Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 8 Dec 1997 09:56:38 -0600 (CST)
From:      Alex Nash <nash@Mcs.Net>
To:        Jan Koum <jkb@best.com>
Cc:        Nate Williams <nate@mt.sri.com>, freebsd-security@FreeBSD.ORG
Subject:   Re: ipfw WAS: Re: [linux-security] New Program: Abacus Sentry
Message-ID:  <Pine.BSF.3.95.971208095421.25350B-100000@Venus.mcs.net>
In-Reply-To: <Pine.BSF.3.96.971208010301.24278A-100000@shell6.ba.best.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 8 Dec 1997, Jan Koum wrote:

> 	Actually, the above can also be considered security problem since
> people can't see if they were attacked two days or weeks ago. Too much 
> stuff gets logged in and gets pushed from the dmesg buffer.
> 	It would be really nice to be able to log ipfw to hard drive with
> the date/time of packets being denied. Man page for ipfw SEE ALSO reffers
> to syslog(8), but:
> % grep syslog /usr/src/sbin/ipfw/ipfw.c
> %

You're looking in the wrong place, see /usr/src/sys/netinet/ip_fw.c
instead.  ipfw uses the kernel's printf, which does get picked up by
syslog.

Alex




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95.971208095421.25350B-100000>