1# This is a sample syslog.conf fragment for use with Sudo. 2# 3# By default, sudo logs to "authpriv" if your system supports it, else it 4# uses "auth". The facility can be set via the --with-logfac configure 5# option or in the sudoers file. 6# To see what syslog facility a sudo binary uses, run `sudo -V' as *root*. 7# 8# NOTES: 9# The whitespace in the following line is made up of <TAB> 10# characters, *not* spaces. You cannot just cut and paste! 11# 12# If you edit syslog.conf you need to send syslogd a HUP signal. 13# Ie: kill -HUP process_id 14# 15# Syslogd will not create new log files for you, you must first 16# create the file before syslogd will log to it. Eg. 17# 'touch /var/log/sudo' 18 19# This logs successful and failed sudo attempts to the file /var/log/auth 20# If your system has the authpriv syslog facility, use authpriv.debug 21auth.debug /var/log/auth 22 23# To log to a remote machine, use something like the following, 24# where "loghost" is the name of the remote machine. 25# If your system has the authpriv syslog facility, use authpriv.debug 26auth.debug @loghost 27