From owner-freebsd-current Mon Mar 20 9:46:14 2000 Delivered-To: freebsd-current@freebsd.org Received: from web2.sea.nwserv.com (web2.sea.nwserv.com [216.145.16.2]) by hub.freebsd.org (Postfix) with ESMTP id 2C5E437B966 for ; Mon, 20 Mar 2000 09:46:03 -0800 (PST) (envelope-from spatula@spatula.net) Received: from localhost (spatula@localhost [127.0.0.1]) by web2.sea.nwserv.com (8.9.3/8.9.3) with ESMTP id JAA82231 for ; Mon, 20 Mar 2000 09:45:49 -0800 (PST) (envelope-from spatula@spatula.net) Date: Mon, 20 Mar 2000 09:45:49 -0800 (PST) From: Nick Johnson X-Sender: spatula@web2.sea.nwserv.com To: current@freebsd.org Subject: syslogd_flags in /etc/defaults/rc.conf Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm curious to see if anyone is like-minded with me that syslogd_flags in /etc/defaults/rc.conf should be "-ss" instead of "". I reasoned that it should be, considering: 1. Most people don't direct syslogs at other machines in my experience. 2. Someone could conceivably DOS a machine by directing tons of crap at port 121, which is also noted in the BUGS section of the syslogd manpage. 3. Syslogd runs as root, and while it is a mature piece of code, I think it preferable to minimize the number of root applications listening on sockets. Nick -- "Why do so many people concern themselves so much with the private affairs of complete strangers?" - Me My PGP public key: http://www.spatula.net/pubkey.txt Nick Johnson, version 1.5 http://www.spatula.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message