From owner-freebsd-security  Sat Aug 22 05:55:44 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id FAA27222
          for freebsd-security-outgoing; Sat, 22 Aug 1998 05:55:44 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from speedy.nethampton.com (speedy.nethampton.com [207.252.75.40])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id FAA27199
          for <security@freebsd.org>; Sat, 22 Aug 1998 05:55:35 -0700 (PDT)
          (envelope-from tplatt@nethampton.com)
Date: Sat, 22 Aug 1998 05:55:35 -0700 (PDT)
Received: (qmail 12836 invoked from network); 22 Aug 1998 12:54:24 -0000
Received: from teebee.hamptons.com (HELO ?204.141.112.245?) (204.141.112.245)
  by speedy.nethampton.com with SMTP; 22 Aug 1998 12:54:24 -0000
X-Sender: tplatt@nethampton.com (Unverified)
Message-Id: <v04003a02b20588b40c80@[204.141.112.245]>
In-Reply-To: <Pine.BSF.3.96.980821183339.26762D-100000@Tyr.office.EFN.org>
References: <199808211915.MAA18409@hub.freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
To: security@FreeBSD.ORG
From: "Timothy R. Platt" <tplatt@nethampton.com>
Subject: Re: Scaring the bezeesus out of your system admin as a normal
 user:
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Seems to me that if you specify -s, not only do you reject incoming
packets, but you are prevented from sending packets to a remote logging
machine as well.

-a will cause syslog to accept packets from a remote machine which would be
ignored by default.

Tim

>On Fri, 21 Aug 1998, Jon Hamilton wrote:
>>
>> That doesn't address remote logging, however.
>
>No, but I think this does help that.
>
>     -s      Operate in secure mode.  Do not listen for log message from re-
>             mote machines.
>
>Of course, if you specify this you have no remote troubles at all.  If you
>specify this and -a you only have to deal with people spoofing udp datagrams
>which is almost unavoidable unless you firewall incoming udp packets at your
>border router.
>
>	-ben@efn.org
>
>>
>>    Jon Hamilton
>>    hamilton@pobox.com
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-security" in the body of the message




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message