Date: Tue, 21 Mar 2000 07:48:22 -0500 From: Will Andrews <andrews@technologist.com> To: Nick Johnson <freebsd@spatula.net> Cc: current@FreeBSD.ORG Subject: Re: syslogd_flags in /etc/defaults/rc.conf Message-ID: <20000321074822.C401@argon.blackdawn.com> In-Reply-To: <Pine.BSF.4.21.0003200935140.25240-100000@web2.sea.nwserv.com>; from freebsd@spatula.net on Mon, Mar 20, 2000 at 09:45:49AM -0800 References: <Pine.BSF.4.21.0003200935140.25240-100000@web2.sea.nwserv.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Mar 20, 2000 at 09:45:49AM -0800, Nick Johnson wrote: > I'm curious to see if anyone is like-minded with me that syslogd_flags in > /etc/defaults/rc.conf should be "-ss" instead of "". I reasoned that it > should be, considering: > > 1. Most people don't direct syslogs at other machines in my experience. > 2. Someone could conceivably DOS a machine by directing tons of crap at > port 121, which is also noted in the BUGS section of the syslogd > manpage. > 3. Syslogd runs as root, and while it is a mature piece of code, I think > it preferable to minimize the number of root applications listening > on sockets. This seems like a reasonable change. Thanks for pointing this out! :) -- Will Andrews <andrews@technologist.com> GCS/E/S @d- s+:+>+:- a--->+++ C++ UB++++ P+ L- E--- W+++ !N !o ?K w--- ?O M+ V-- PS+ PE++ Y+ PGP+>+++ t++ 5 X++ R+ tv+ b++>++++ DI+++ D+ G++>+++ e->++++ h! r-->+++ y? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000321074822.C401>