From bdc9b72e1bbc00c5c8f669c9f212c44f2db49aaa Mon Sep 17 00:00:00 2001
From: sio user <sio@ip-10-0-2-15>
Date: Mon, 25 Dec 2023 11:36:20 +0100
Subject: [PATCH] fichier de config journald snd et rcv

---
 sio2/CYBER/Journald/journal-upload.conf       | 19 ++++++++
 .../Journald/systemd-journal-remote.service   | 46 +++++++++++++++++++
 2 files changed, 65 insertions(+)
 create mode 100644 sio2/CYBER/Journald/journal-upload.conf
 create mode 100644 sio2/CYBER/Journald/systemd-journal-remote.service

diff --git a/sio2/CYBER/Journald/journal-upload.conf b/sio2/CYBER/Journald/journal-upload.conf
new file mode 100644
index 0000000..4b9d1b7
--- /dev/null
+++ b/sio2/CYBER/Journald/journal-upload.conf
@@ -0,0 +1,19 @@
+#  This file is part of systemd.
+#
+#  systemd is free software; you can redistribute it and/or modify it under the
+#  terms of the GNU Lesser General Public License as published by the Free
+#  Software Foundation; either version 2.1 of the License, or (at your option)
+#  any later version.
+#
+# Entries in this file show the compile time defaults. Local configuration
+# should be created by either modifying this file, or by creating "drop-ins" in
+# the journal-upload.conf.d/ subdirectory. The latter is generally recommended.
+# Defaults can be restored by simply deleting this file and all drop-ins.
+#
+# See journal-upload.conf(5) for details.
+
+[Upload]
+URL=http://192.168.1.42:19532
+# ServerKeyFile=/etc/ssl/private/journal-upload.pem
+# ServerCertificateFile=/etc/ssl/certs/journal-upload.pem
+# TrustedCertificateFile=/etc/ssl/ca/trusted.pem
diff --git a/sio2/CYBER/Journald/systemd-journal-remote.service b/sio2/CYBER/Journald/systemd-journal-remote.service
new file mode 100644
index 0000000..aca66ff
--- /dev/null
+++ b/sio2/CYBER/Journald/systemd-journal-remote.service
@@ -0,0 +1,46 @@
+#  SPDX-License-Identifier: LGPL-2.1-or-later
+#
+#  This file is part of systemd.
+#
+#  systemd is free software; you can redistribute it and/or modify it
+#  under the terms of the GNU Lesser General Public License as published by
+#  the Free Software Foundation; either version 2.1 of the License, or
+#  (at your option) any later version.
+
+[Unit]
+Description=Journal Remote Sink Service
+Documentation=man:systemd-journal-remote(8) man:journal-remote.conf(5)
+Requires=systemd-journal-remote.socket
+
+[Service]
+ExecStart=/lib/systemd/systemd-journal-remote --listen-http=-3 --output=/var/log/journal/remote/
+LockPersonality=yes
+LogsDirectory=journal/remote
+MemoryDenyWriteExecute=yes
+NoNewPrivileges=yes
+PrivateDevices=yes
+PrivateNetwork=yes
+PrivateTmp=yes
+ProtectProc=invisible
+ProtectClock=yes
+ProtectControlGroups=yes
+ProtectHome=yes
+ProtectHostname=yes
+ProtectKernelLogs=yes
+ProtectKernelModules=yes
+ProtectKernelTunables=yes
+ProtectSystem=strict
+RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6
+RestrictNamespaces=yes
+RestrictRealtime=yes
+RestrictSUIDSGID=yes
+SystemCallArchitectures=native
+User=systemd-journal-remote
+WatchdogSec=3min
+
+# If there are many split up journal files we need a lot of fds to access them
+# all in parallel.
+LimitNOFILE=524288
+
+[Install]
+Also=systemd-journal-remote.socket