François Patte wrote: > Today, I get this warning from logwatch: I am glad there was a good answer to your question. And now that there has been one I feel okay in posting something taking this in a different direction. I suggest that you don't try to "make a silk purse out of a pigs ear". The logwatch package has always been a little rough.
In Debian the much more supported tool is logcheck. I find it superior to logwatch in many ways. If you have not heard of logcheck then please check it out. $ apt-cache show logcheck Description-en: mails anomalies in the system logfiles to the administrator Logcheck helps spot problems and security violations in your logfiles automatically and will send the results to you in e-mail. . Logcheck was part of the Abacus Project of security tools, but this version has been rewritten. Homepage: http://www.logcheck.org/ I suggest trying logcheck and removing logwatch. > I understand that my /tmp partition is too small, but I don't understand > why logwatch needs more than 1 Gb to write the log digest? Who can know what evil lurks in the hearts of men? But I assume this is simply a rhetorical question. But it is one of the reasons to move away from the tool. Unless you want to become involved in the upstream and work to fix it. Bob
signature.asc
Description: Digital signature
