From owner-freebsd-security Thu Sep 23 11:17:20 1999 Delivered-To: freebsd-security@freebsd.org Received: from wopr.caltech.edu (wopr.caltech.edu [131.215.240.222]) by hub.freebsd.org (Postfix) with ESMTP id 323E815088; Thu, 23 Sep 1999 11:17:13 -0700 (PDT) (envelope-from mph@wopr.caltech.edu) Received: (from mph@localhost) by wopr.caltech.edu (8.9.3/8.9.1) id LAA03972; Thu, 23 Sep 1999 11:17:06 -0700 (PDT) (envelope-from mph) Date: Thu, 23 Sep 1999 11:17:06 -0700 From: Matthew Hunt To: Chris Shenton Cc: freebsd-net@freebsd.org, freebsd-security@freebsd.org Subject: Re: Inetd -l: log *all* connection attempts (not just valid svcs) Message-ID: <19990923111705.A3938@wopr.caltech.edu> References: <19990923081153.B668@wopr.caltech.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.4i In-Reply-To: ; from Chris Shenton on Thu, Sep 23, 1999 at 02:14:00PM -0400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Sep 23, 1999 at 02:14:00PM -0400, Chris Shenton wrote: > As to the name of the variable... you guys are the zaniest :-) Yes; it's far from obvious. It makes sense once you understand what it does, but when looking for its functionality, I wouldn't think of the phrase "in vain". > (When did this variable appear?) It's been around for a while: revision 1.41 date: 1996/04/04 10:46:39; author: phk; state: Exp; lines: +13 -2 Log TCP syn packets for ports we don't listen on. Controlled by: sysctl net.inet.tcp.log_in_vain: 1 Log UDP syn packets for ports we don't listen on. Controlled by: sysctl net.inet.udp.log_in_vain: 1 Suggested by: Warren Toomey -- Matthew Hunt * UNIX is a lever for the http://www.pobox.com/~mph/ * intellect. -J.R. Mashey To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message