From owner-cvs-usrsbin Wed Apr 22 11:13:10 1998 Return-Path: Received: (from daemon@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA05109 for cvs-usrsbin-outgoing; Wed, 22 Apr 1998 11:13:10 -0700 (PDT) (envelope-from owner-cvs-usrsbin) Received: from GndRsh.aac.dev.com (GndRsh.aac.dev.com [207.149.232.62]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA05101; Wed, 22 Apr 1998 18:12:53 GMT (envelope-from rgrimes@GndRsh.aac.dev.com) Received: (from rgrimes@localhost) by GndRsh.aac.dev.com (8.8.8/8.8.8) id LAA07748; Wed, 22 Apr 1998 11:10:20 -0700 (PDT) (envelope-from rgrimes) From: "Rodney W. Grimes" Message-Id: <199804221810.LAA07748@GndRsh.aac.dev.com> Subject: Re: cvs commit: src/usr.sbin/syslogd syslogd.c In-Reply-To: <3176.893244892@critter.freebsd.dk> from Poul-Henning Kamp at "Apr 22, 98 01:34:52 pm" To: phk@critter.freebsd.dk (Poul-Henning Kamp) Date: Wed, 22 Apr 1998 11:10:19 -0700 (PDT) Cc: peter@netplex.com.au, cvs-committers@freebsd.org, cvs-all@freebsd.org, cvs-usrsbin@freebsd.org, soren@dt.dk X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-cvs-usrsbin@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > Hmmmm, > > Now, I'm not too sure what people use SecureMode for, but it doesn't > make sense to expect one host to accept remote logging from other > hosts that don't, at least in my book... Your book may not involve a large AS of systems that remotely syslog to a central syslog server. All ``syslog clients'' run in syslogd -s mode, the ``syslog server'' runs in normal syslogd mode, but has ipfw setup such that it only accepts syslog packets from a trusted list of clients. > > I would tend to say `document that you cant do remote logging with "-s"' > and leave it at that, but I may be overlooking something here... I really thing you have over looked something!!! -- Rod Grimes rgrimes@gndrsh.aac.dev.com Accurate Automation, Inc. Reliable computers for FreeBSD