From owner-freebsd-questions@FreeBSD.ORG  Fri Jan 27 13:07:23 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 23D1716A420
	for <freebsd-questions@freebsd.org>;
	Fri, 27 Jan 2006 13:07:23 +0000 (GMT)
	(envelope-from infofarmer@gmail.com)
Received: from zproxy.gmail.com (zproxy.gmail.com [64.233.162.199])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A42A043D46
	for <freebsd-questions@freebsd.org>;
	Fri, 27 Jan 2006 13:07:22 +0000 (GMT)
	(envelope-from infofarmer@gmail.com)
Received: by zproxy.gmail.com with SMTP id 8so607989nzo
	for <freebsd-questions@freebsd.org>;
	Fri, 27 Jan 2006 05:07:21 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
	b=sBnXR18llE0Oty7Ue/nKicV1HJfwFe+OrNHOfgy/CGjX6MZaWhRZQ7raH/ynfdFTJN9s0dPv4YcQZKF5CO1gtMz8114LUvI73p0C0Cmmej5i3Qt93yc7NjMoknAr6smaQ9CN7tQAgzUZLcflu6DBVQWFGr+cwBTgIvaskYNSGXU=
Received: by 10.36.8.15 with SMTP id 15mr2511332nzh;
	Fri, 27 Jan 2006 05:07:21 -0800 (PST)
Received: by 10.37.20.67 with HTTP; Fri, 27 Jan 2006 05:07:21 -0800 (PST)
Message-ID: <cb5206420601270507y3bfa38f4q5ca3214772d81048@mail.gmail.com>
Date: Fri, 27 Jan 2006 16:07:21 +0300
From: Andrew Pantyukhin <infofarmer@gmail.com>
To: Erik Norgaard <norgaard@locolomo.org>
In-Reply-To: <43D9E707.2050809@locolomo.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
References: <43D9E707.2050809@locolomo.org>
Cc: FreeBSD questions <freebsd-questions@freebsd.org>
Subject: Re: Encrypted syslog over network
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Jan 2006 13:07:23 -0000

On 1/27/06, Erik Norgaard <norgaard@locolomo.org> wrote:
> Hi:
>
> I was thinking, is there any way of secure syslogging to a different
> server?
>
> AFAIK syslog uses udp/514 and I would like to monitor a number of remote
> hosts.
>
> Now, for privacy and security reasons, I would like that the syslog
> messages are sent encrypted. This may require pre-shared keys as the udp
> protocol does not include a handshake and key exchange.
>
> Any solution for this? syslog-ng doesn't seem to include such feature.
>
> Thanks, Erik
>
> --
> Ph: +34.666334818                                  web: www.locolomo.org
> S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt
> Subject ID:  9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72
> Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o=
rg"
>

It's 2006. IPSec is the answer.