From owner-freebsd-ports Mon Feb 17 19:39:26 2003 Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3637937B407; Mon, 17 Feb 2003 19:39:24 -0800 (PST) Received: from obsecurity.dyndns.org (adsl-63-207-60-52.dsl.lsan03.pacbell.net [63.207.60.52]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7309943F85; Mon, 17 Feb 2003 19:39:23 -0800 (PST) (envelope-from kris@obsecurity.org) Received: from rot13.obsecurity.org (rot13.obsecurity.org [10.0.0.5]) by obsecurity.dyndns.org (Postfix) with ESMTP id 6989C679DA; Mon, 17 Feb 2003 19:39:20 -0800 (PST) Received: by rot13.obsecurity.org (Postfix, from userid 1000) id CC57710CB; Mon, 17 Feb 2003 19:39:19 -0800 (PST) Date: Mon, 17 Feb 2003 19:39:19 -0800 From: Kris Kennaway To: "Douglas K. Rand" Cc: Kris Kennaway , freebsd-security@FreeBSD.ORG, freebsd-ports@FreeBSD.ORG Subject: Re: FireDNS and net.inet.udp.log_in_vain Message-ID: <20030218033919.GA33173@rot13.obsecurity.org> References: <873cmmpc16.wl@bemidji.meridian-enviro.com> <20030218032338.GA32867@rot13.obsecurity.org> <871y26p8fe.wl@bemidji.meridian-enviro.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="+QahgC5+KEYLbs62" Content-Disposition: inline In-Reply-To: <871y26p8fe.wl@bemidji.meridian-enviro.com> User-Agent: Mutt/1.4i Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --+QahgC5+KEYLbs62 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Feb 17, 2003 at 09:35:49PM -0600, Douglas K. Rand wrote: > Doug> Has anybody else noticed this, and is there a solution other > Doug> than "Ignore those log messages" or "Unset > Doug> net.inet.udp.log_in_vain"? (Both of these solutions /are/ fairly > Doug> reasonable.) >=20 > Kris> log_in_vain means "log all connection attempts". And that's > Kris> precisely what it's doing :-) Turn it off or filter it if you > Kris> don't actually want to see ALL connection attempts. >=20 > I hate to be contrary, but.... Thats not what /etc/defaults/rc.conf > says: >=20 > log_in_vain=3D"0" # >=3D1 to log connects to ports w/o= listeners. OK, but that's still what's going on on your system. Kris --+QahgC5+KEYLbs62 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+UarmWry0BWjoQKURApppAJ4jRzupl55uWk2eFO51nVLiJHnV/ACgi0wP SPbFJf5KKFhpoh5pbIXr3dE= =kAvn -----END PGP SIGNATURE----- --+QahgC5+KEYLbs62-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message