I am new logstash, i've installed logstash-2.2.4 on centos linux and placed my config file at /etc/logstash/conf.d folder and try to start logstash using "service logstash start" command as a root user. By default logstash service getting started as "logstash" user and created following log files at /var/log/logstash.
/var/log/logstash # ls -ltr
-rw-r--r-- 1 root root 0 Sep 1 12:02 logstash.err
-rw-r--r-- 1 root root 57 Sep 1 12:02 logstash.stdout
-rw-r--r-- 1 logstash logstash 186 Sep 1 12:02 logstash.log
Couple of queries:
- why "logstash.err" and "logstash.stdout" log files are created with "root" user priviledges and only logstash.log file getting created as "logstash" user permission?
- Is there any log/error message will be written to "logstash.err" and "logstash.stdout" once the service is up? seems other than the root...no one have write permission! Just need some understanding/purpose behind these two files.
- i just installed java, didn't set any JAVA_HOME or PATH env variables, but logstash picks the java path from /usr/bin/java when it starts ( logstash 23686 1 99 13:19 pts/1 00:00:03 /usr/bin/java).
i see logstash script is placed at /etc/init.d/logstash and having following entries. How does this works?
export PATH HOME LS_HEAP_SIZE LS_JAVA_OPTS LS_USE_GC_LOGGING LS_GC_LOG_FILE