Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 31 May 1999 15:43:10 +0100 (BST)
From:      dwmalone@maths.tcd.ie
To:        FreeBSD-gnats-submit@freebsd.org
Subject:   bin/11960: inetd built in wrapping doesn't log like tcpd does.
Message-ID:  <199905311543.aa28242@gosset.maths.tcd.ie>
next in thread | raw e-mail | index | archive | help 

>Number:         11960
>Category:       bin
>Synopsis:       inetd built in wrapping doesn't log like tcpd does.
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Mon May 31 07:50:01 PDT 1999
>Closed-Date:
>Last-Modified:
>Originator:     David Malone
>Release:        FreeBSD 3.2-STABLE i386
>Organization:
School of Mathematics, Trinity College, Dublin, Ireland.
>Environment:

	3.2-STABLE

>Description:

The TCP wrapping which is now built into inetd logs denied connections,
but only logs accepted connections if you give the -l flag. This doesn't
match the real tcpd's behavior, which logs allowed connections at a
much lower syslog level.

Tieing the behavior to the -l flag is incorrect, because it makes it
impossible to selectivly log successful connections by using hosts.allow
to adjust the syslog level. (The -l flag tries to log all connections).

>How-To-Repeat:

Try doing something like this in /etc/hosts.allow, which would 
log smtpd connections to localhost at a seperate level, so syslogd
can put them all in one file.

smtpd: 127.0.0.1 : rfc931 1 : severity local1.info : allow

>Fix:

Apply the following to inetd.c - seems to apply to 3.2 and current.
	
648,652c648,650
< 				if (log) {
< 				    syslog(allow_severity,
< 				        "connection from %.500s, service %s (%s)",
< 					eval_client(&req), service, sep->se_proto);
< 				}
---
> 				syslog(allow_severity,
> 				    "connection from %.500s, service %s (%s)",
> 				    eval_client(&req), service, sep->se_proto);

>Release-Note:
>Audit-Trail:
>Unformatted:


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199905311543.aa28242>