I got some osquery on mac os and there is a file /private/var/log/osquery/osquery-output.log. This file takes almost 16 Gb of disk space. What is it? Can i delete it safely?
1
There are 1 answers
Related Questions in MACOS
- Error installing Nativescript on Mac M2 Sonoma 14.4.1
- macOS - Most secure way of a GUI SUDO_ASKPASS
- When using onDrag in SwiftUI on Mac how can I detect when the dragged object has been released anywhere?
- Why does Hugo generate different taxonomy-related HTML on different OS's?
- ZSH function parameters conundrum
- how to make read only file/directory in Mac writable
- macOS BigSur - Unable to run bundled php version or brew php 8
- 9 Digit Addresses in Hexadecimal System in MacOS
- MacOS Bash-Script: while read p and echo
- How to make a range for tail rows on a categorized table in Numbers with JXA scripts?
- Cannot build a basic project with curl on Mac (M2) for Raspberry Pi Pico
- How to recover deleted files from create vite react project
- Can't run built SFML project from Xcode template
- React Native - RealmJS - Linker command failed with exit code 1
- How can I manually add a keyboard shortcut to a Shortcut Action Service directly via the system files, without going through the System Prefs GUI?
Related Questions in DISKSPACE
- disk usage calculation of macOS - counting duplicated entries?
- Disk pressure on nodes
- How to get disk usage stats of a share folder in windows in Java?
- I have error Datalife engine panel diskfreespace
- Does invoking a system call like statfs with Python subprocess use less overhead than invoking a C utility like df?
- XAMPP tmp folder oversized and shows MySQL high CPU usage
- A file with actual size 1 byte uses 8 blocks of 4096 bytes on the filesystem
- In Linux, how can I delete directories whose contents have not been accessed in several days?
- Avoid disk usage as an intermediate step for Zip Compression in C#
- deploy multiple virtual machines with different data disk sizes to each machine. Also, number of disk may vary from virtual machine to machine
- Why did Vim create a constantly growing .swp file?
- How to properly resize disk usage in docker desktop WSL2?
- Jenkins is failing at the Pre Set Up stage: "No space left on device"? All I did was change a comment in the code
- Iguazio, Errno 28
- Could GAE Memory Limit Reached be due to large requirements.txt?
Related Questions in OSQUERY
- High CPU Usage with osquery on Linux, Even in Idle State
- How to make regex_match patterns case insensitive in osquery queries?
- Monitoring a remote endpoint with osquery
- How does --worker_threads=4 in osquery works?
- OSQuery: Event publisher not enabled: etw_process_publisher: etw_process_publisher publisher disabled via configuration
- Need assistance in converting osquery queries from regexp_like() to regex_match()
- Osquery custom path installation windows, Is there a way to modify the paths for "Pidfile" and "osquery.db"?
- Not getting callback for Osquery Packs in osquery extension
- osquery custom table issue of deregistering extension
- How to collect data from one host osquery agent to cenral server?
- On mac os Mojave osquery not capturing events in osquery config plugin or config path
- firefox_addons query on Osquery
- why osquery do not use linux os name /etc/os-release but that from
- Osquery from a container?
- system policy: java(4297) deny(1) file-write-mode on mac os
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
By itself,
osquerydoes very little. It can be configured to run a variety of queries to examine system state. Depending on configuration, these results might be stored locally or sent to a log aggregator. The configuration can either be from a local file, or from a remote server.It sounds like you have an osquery install that is configured to log to local disk, but nothing is collecting those results.
osquery itself does not do anything with that file. So you can certainly truncate it. (Just deleting it will likely leave an unlinked file). But that file implies a misconfigured setup.
Should it be logging to local disk? What consumes those logs? Etc.