From owner-freebsd-current Mon Mar 20 12:47: 2 2000 Delivered-To: freebsd-current@freebsd.org Received: from pebkac.owp.csus.edu (pebkac.owp.csus.edu [130.86.232.245]) by hub.freebsd.org (Postfix) with ESMTP id 672D137C89E for ; Mon, 20 Mar 2000 12:27:13 -0800 (PST) (envelope-from joseph.scott@owp.csus.edu) Received: from owp.csus.edu (mail.owp.csus.edu [130.86.232.247]) by pebkac.owp.csus.edu (8.9.3/8.9.3) with ESMTP id MAA28361; Mon, 20 Mar 2000 12:27:01 -0800 (PST) (envelope-from joseph.scott@owp.csus.edu) Message-ID: <38D68991.4ABDF92D@owp.csus.edu> Date: Mon, 20 Mar 2000 12:26:57 -0800 From: Joseph Scott X-Mailer: Mozilla 4.7 [en] (X11; I; Linux 2.0.36 i386) X-Accept-Language: en,pdf MIME-Version: 1.0 To: Nick Johnson Cc: current@FreeBSD.ORG Subject: Re: syslogd_flags in /etc/defaults/rc.conf References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Nick Johnson wrote: > > I'm curious to see if anyone is like-minded with me that syslogd_flags in > /etc/defaults/rc.conf should be "-ss" instead of "". I reasoned that it > should be, considering: > > 1. Most people don't direct syslogs at other machines in my experience. While I am one of those people that does redirect syslogs to other machines, I agree with your change. > 2. Someone could conceivably DOS a machine by directing tons of crap at > port 121, which is also noted in the BUGS section of the syslogd > manpage. > 3. Syslogd runs as root, and while it is a mature piece of code, I think > it preferable to minimize the number of root applications listening > on sockets. > > Nick -- Joseph Scott joseph.scott@owp.csus.edu Office Of Water Programs - CSU Sacramento To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message