System Kernel Logging [syslog, logwatch, dmesg, klogd]

2.

What entry should you add to /etc/syslog.conf to log only kernel events with the level emergency to /var/adm/emergency?
Please select the best answer.

A.

*.emerg /var/adm/emergency

B.

kern.emerg /var/adm/emergency

C.

kern.* /var/adm/emergency

D.

kern.emerg *

The correct answer is B. Add the entry kern.emerg /var/adm/emergency to /etc/syslog.conf to log only kernel events with the level emergency to /var/adm/emergency.
A is incorrect because *.emerg /var/adm/emergency will log all events with the level emergency to the logfile /var/adm/emergency. C is incorrect because kern.* /var/adm/emergency will log all kernel events regardless of level to /var/adm/emergency. D is incorrect because kern.emerg * will notify all users of all kernel events with the level emergency.

System and Kernel Logging - Quiz Explanation