On 08/07/2013 03:55 PM, Eric W. Biederman wrote: > > Since this still has not been addressed. I am going to repeat Andrews > objection again. > > Isn't there a better way to get iptables information out than to use > syslog. I did not have time to follow up on that but it did appear that > someone did have a better way to get the information out. > > Essentially the argument against this goes. The kernel logging facility > is really not a particularly good tool to be using for anything other > than kernel debugging information, and there appear to be no substantial > uses for a separate syslog that should not be done in other ways. containerizing syslog is not only for iptables, it also isolates the /dev/kmsg, /proc/kmsg, syslog(2)... user space tools in container may use this interface to read/generate syslog. But I don't know how important/urgent this containerizing syslog work is, Rui Xiang, can you find an important/popular user space tool which uses this interfaces to generate kernel syslog? Thanks Gao _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/containers
