From owner-freebsd-questions Thu Nov 15 15:38:40 2001 Delivered-To: freebsd-questions@freebsd.org Received: from services.webwarrior.net (overlord-host99.dsl.visi.com [209.98.86.99]) by hub.freebsd.org (Postfix) with ESMTP id D623837B416 for ; Thu, 15 Nov 2001 15:38:37 -0800 (PST) Received: from twincat.vladsempire.net (hutch-176.hutchtel.net [206.10.67.76]) by services.webwarrior.net (Postfix) with ESMTP id 0963B347 for ; Thu, 15 Nov 2001 17:38:47 -0600 (CST) Received: by twincat.vladsempire.net (Postfix, from userid 1001) id 9FF9F3A1A; Thu, 15 Nov 2001 17:34:20 +0000 (GMT) Date: Thu, 15 Nov 2001 17:34:20 +0000 From: Josh Paetzel To: brain_damaged Cc: freebsd-questions@FreeBSD.ORG Subject: Re: freebsd security howto question Message-ID: <20011115173420.A432@twincat.vladsempire.net> Mail-Followup-To: brain_damaged , freebsd-questions@FreeBSD.ORG References: <200111151750.AA228196552@florida-wireless.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200111151750.AA228196552@florida-wireless.com>; from brain_damaged@florida-wireless.com on Thu, Nov 15, 2001 at 05:50:59PM -0500 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, Nov 15, 2001 at 05:50:59PM -0500, brain_damaged wrote: > "One thing you can do is to tell your syslog daemon NOT to listen > to syslog messages from other systems by running your syslog daemon > in secure mode. To do so, add "-s" switch in your /etc/rc.conf file." > > > if i do this i get an error so i assume he/she mistyped it or wrote > it thinking someone with more intelligence would better understand > what to do :-) > > what should actually go there ? is it to be in some other file > like syslog.conf ? if so how tho ? > > thanks > hacked once paranoid for life > You need to put this in /etc/rc.conf syslogd_flags="-s" I am running 4.4-STABLE and that is the default. I don't know if it would be different for any other version of FreeBSD. You can check on your system by doing $grep syslogd /etc/defaults/rc.conf If the flags line comes up with a -s then you are already running syslogd in secure mode. Josh p.s. You email had lines that were over 100 characters long. Please set your mailer to wrap lines at 70 characters. A lot of us use text mailers that don't deal with long lines very well at all. p.p.s. I prefer the phrase, 'Once bitten, Twice shy.' :) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message