Date: Wed, 5 Apr 2000 11:10:51 -0700 From: Andre Gironda <andre@sun4c.net> To: goten@linux.sduteam.com Cc: security@freebsd.org Subject: Re: Queston on secure syslogd Message-ID: <20000405111051.A3830@toaster.sun4c.net> In-Reply-To: <Pine.LNX.4.10.10004051125150.9899-100000@linux.sduteam.com>; from goten@linux.sduteam.com on Wed, Apr 05, 2000 at 11:26:44AM -0700 References: <Pine.LNX.4.10.10004051125150.9899-100000@linux.sduteam.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I always use the syslogd flags "-ss" except when I have a syslog server on a backhaul firewalled network. Over the Internet, I'd be more likely to use scp, rsync, or CVSup even though I should probably use something better like IPSec or SNMPv3. There have got to be 4 million different ways to solve your problem. dre On Wed, Apr 05, 2000 at 11:26:44AM -0700, goten@linux.sduteam.com wrote: > Ok, I am just wondering if there is any secure alternative for syslogd. > Since I want to send the log file via TCP/IP over the Internet, using > @1.2.3.4 in syslogd.conf is not secure enough if that IP is not on the > LAN. > > I have tried to use nsyslogd, but the SSL not seems to be working > right. I can use Snort -dvC to read all the content in clear text when > nsyslogd send message thru UDP port 514. Any suggestions? > > rgd, > Derek > > ps. I have tried ssyslogd also, it won't even compile on FreeBSD 4.0. -- This program has been brought to you by the language C and the number F. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000405111051.A3830>