Journal (computing)

A log file ( also known as event log file, english log file ) contains the automatic guided protocol of all or any actions of processes on a computer system. The correct term for this is therefore log file.

Important applications are found mainly in process control and automation. In principle, all actions are written that for a later examination (audit) are required or might be. The flight recorder in an aircraft is an example of continuous logging, but it is rarely evaluated, for example after an accident.

In the area of ​​database log file refers to the log file in the changes to the database of correctly completed transactions (completed by commit) are held to in the case of an error ( eg system crash) restore the current data to

The word logfile is increasingly being used in parts of the blogosphere as a term for a weblog entry. With this meaning, the term initially only of log Files.de was (this page is now disabled) used in the meantime he is popular with Blogs with pure diary character.

Basics

On a PC, log files of certain actions can be written by one or more users on a computer without them noticing or her work will be affected. Essential to this is the system log ( Linux usually in / var / log / messages, but also Windows NT and successors write appropriate entries in one or more event logs ), if they are configured accordingly. This can be logged to the system, but also other important information, inter alia, the registrations.

In addition to the operating system itself usually write background programs (such as an email server, a proxy server, and others) in log files to (permanently ) or to keep action messages, error messages and hints persistent temporarily available. The same goes for installing programs, firewalls, virus scanners and the like.

Log files are created by web servers, but can also be used outside of the Internet in the study of usability of programs, general user behavior, or debugging a system.

The log file is examined in the Logdateianalyse.

Building a log line

In principle, contains a log line in a log file usually an event and Related date and time as a timestamp. The time indication is usually preceded by as it is in a log file to a chronological listing.

Log file

In the example it is the ( truncated in the middle) contents of the log file \ WINDOWS \ system32 \ wbem \ Logs \ setup.log under Windows XP; left of the time stamp, the right running at this time action:

(Sun September 13 23:02:05 2009): Beginning wbemupgd.dll Registration (Sun September 13 23:02:05 2009): Current build of wbemupgd.dll is 5.1.2600.2180 ( xpsp_sp2_rtm.040803 - 2158 ) (Sun September 13 23:02:05 2009): Beginning Core Upgrade (Sun September 13 23:02:05 2009): Beginning MOF load (Sun September 13 23:02:05 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ cimwin32.mof (Sun September 13 23:02:09 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ cimwin32.mfl (Sun September 13 23:02:12 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ system.mof (Sun September 13 23:02:16 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ evntrprv.mof (Sun September 13 23:02:16 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ hnetcfg.mof (Sun September 13 23:02:16 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ sr.mof (Sun September 13 23:02:16 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ dgnet.mof (Sun September 13 23:02:16 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ whqlprov.mof (Sun September 13 23:02:16 2009): Processing C: \ WINDOWS \ system32 \ WBEM \ ieinfo5.mof (Sun September 13 23:02:17 2009): MOF load completed. (Sun September 13 23:02:17 2009): Beginning MOF load (Sun September 13 23:02:17 2009): MOF load completed. (Sun September 13 23:02:17 2009): Core upgrade completed. (Sun September 13 23:02:17 2009): wbemupgd.dll Service Security upgrade succeeded. (Sun September 13 23:02:17 2009): Beginning WMI (WDM) Namespace Init (Sun September 13 23:02:20 2009): WMI (WDM) Namespace InitCompleted (Sun September 13 23:02:20 2009): ESS enabled (Sun September 13 23:02:20 2009): ODBC Driver \ wbemdr32.dll not present (Sun September 13 23:02:20 2009): Successfully verified WBEM OBDC adapter ( incompatible version removed if it what detected). (Sun September 13 23:02:20 2009): wbemupgd.dll Registration completed. (Sun September 13 23:02:20 2009): serverlog

A typical web server log file ( " Combined Log Format" ) is as follows (excerpt with two entries ):

Admissibility in Germany

According to § 15 of the German Telemedia Act Service providers may only collect and use personal information of a user, to the extent necessary to allow the use of tele- media and bill. Usage data may only be stored on the end of the use of process beyond the extent necessary for the purpose of billing the user. On this basis, the District Court of Berlin in 2007 ruled that the logging of the IP addresses of the user of a publicly available Internet portal without their consent is not permitted.