From owner-freebsd-arch@FreeBSD.ORG  Sun May  2 03:50:21 2010
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Delivered-To: freebsd-arch@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 325151065670
	for <freebsd-arch@freebsd.org>; Sun,  2 May 2010 03:50:21 +0000 (UTC)
	(envelope-from imp@bsdimp.com)
Received: from harmony.bsdimp.com (bsdimp.com [199.45.160.85])
	by mx1.freebsd.org (Postfix) with ESMTP id E88988FC14
	for <freebsd-arch@freebsd.org>; Sun,  2 May 2010 03:50:20 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by harmony.bsdimp.com (8.14.3/8.14.1) with ESMTP id o423o92t041180;
	Sat, 1 May 2010 21:50:09 -0600 (MDT) (envelope-from imp@bsdimp.com)
Date: Sat, 01 May 2010 21:50:23 -0600 (MDT)
Message-Id: <20100501.215023.353672579433532204.imp@bsdimp.com>
To: ed@80386.nl
From: "M. Warner Losh" <imp@bsdimp.com>
In-Reply-To: <20100501235846.GU56080@hoeg.nl>
References: <20100501203244.GT56080@hoeg.nl>
	<20100501205625.GB36980@server.vk2pj.dyndns.org>
	<20100501235846.GU56080@hoeg.nl>
X-Mailer: Mew version 6.3 on Emacs 22.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Cc: Alexander@Leidinger.net, freebsd-arch@freebsd.org
Subject: Re: [Extension] utmpx and LOGIN_FAILURE
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussion related to FreeBSD architecture <freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 02 May 2010 03:50:21 -0000

In message: <20100501235846.GU56080@hoeg.nl>
            Ed Schouten <ed@80386.nl> writes:
: * Peter Jeremy <peterjeremy@acm.org> wrote:
: > On 2010-May-01 22:32:44 +0200, Ed Schouten <ed@80386.nl> wrote:
: > >* Alexander Leidinger <Alexander@Leidinger.net> wrote:
: > >> Does this default to on or off or is this always on? If the later: some
: > >> kind of a switch (no matter what the default is) would be highly
: > >> desired.
: > >
: > >What about adding a switch to last(1) to (un)hide the entries?
: > 
: > That doesn't cover the DoS potential of logging this data in the
: > firstplace.
: 
: So how is this covered right now? As far as I know, all of our existing
: login services write messages to /var/log/*.

newsyslog rotates those files when they get too big...

Warner