From owner-freebsd-hackers Mon Apr 7 13:26:21 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id NAA08960 for hackers-outgoing; Mon, 7 Apr 1997 13:26:21 -0700 (PDT) Received: from phaeton.artisoft.com (phaeton.Artisoft.COM [198.17.250.50]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id NAA08955 for ; Mon, 7 Apr 1997 13:26:17 -0700 (PDT) Received: (from terry@localhost) by phaeton.artisoft.com (8.6.11/8.6.9) id NAA01953; Mon, 7 Apr 1997 13:07:17 -0700 From: Terry Lambert Message-Id: <199704072007.NAA01953@phaeton.artisoft.com> Subject: Re: syslogd watching other machine(s) To: brian@awfulhak.org (Brian Somers) Date: Mon, 7 Apr 1997 13:07:17 -0700 (MST) Cc: terry@lambert.org, brian@awfulhak.org, brian@utell.co.uk, freebsd-hackers@FreeBSD.org In-Reply-To: <199704071919.UAA13161@awfulhak.demon.co.uk> from "Brian Somers" at Apr 7, 97 08:19:51 pm X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk > > Why are messages that come in from a non-local source being resent? > > > > If a machine is the loghost for another machine, it should not be > > permitted to delegate. > > Maybe not, but as it does, we can't "undo" that ability. What if > someone is using this "feature" as an ability to proxy syslog messages ? What if they do? Then they will need 'n' daemons for 'n' machines for your "cluster notification" scenario. Eventually, you run out of ports. 8-|. One quick way that will work for linear forward delegation and single tier clustering would be to disallow repeating to the sender, but not otherwise. Multitier clusters and circular forward delegation would still run into "loop with hopcoung >= 2" problems. Maybe a better fix would be to deal with "multicast" issues using "multicast" technology instead of kludges? Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.