SYNOPSIS
qssign -s|S <secret> [-e] [-v] [-u <name>] [-f <regex>] [-a 'sha1'|'sha256']DESCRIPTION
qssign is a log data integrity check tool. It reads log data from stdin (pipe) and writes the data to stdout adding a sequence number and signatur to ever log line.OPTIONS
- -s <secret>
- Passphrase used to calculate signature.
- -S <program>
- Specifies a program which writes the passphrase to stdout.
- -e
- Writes end marker when stopping data signing.
- -v
- Verification mode checking the integrity of signed data.
- -u <name>
- Becomes another user, e.g. www-data.
- -f <regex>
- Filter pattern (case sensitive regular expression) for messages which do not need to be signed.
- -a 'sha1'|'sha256'
- Specifes the algorithm to use. Default is sha1.
EXAMPLE
Sign:
TransferLog "|/bin/qssign -s password -e |/bin/qsrotate -o /var/log/apache/access_log"
Verify:
cat access_log | qssign -s password -v