I have the following line in my /etc/rsyslog.conf
:programname, contains, "suhosin" /var/log/suhosin.log
which logs all php security related incidents to /var/log/suhosin.log
. That is nice, but I would like rsyslog to execute my script action.sh
instead of logging to file. How could I do that?
Best Answer
You are looking for omprog.
See the docs for more details: http://www.rsyslog.com/doc/v8-stable/configuration/modules/omprog.html