From owner-freebsd-current Fri Apr 12 00:23:00 1996 Return-Path: owner-current Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id AAA04602 for current-outgoing; Fri, 12 Apr 1996 00:23:00 -0700 (PDT) Received: from tfs.com (tfs.com [140.145.250.1]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id AAA04584 Fri, 12 Apr 1996 00:22:57 -0700 (PDT) Received: from critter.tfs.com by tfs.com (smail3.1.28.1) with SMTP id m0u7cuu-0003wCC; Fri, 12 Apr 96 00:05 PDT Received: from localhost.tfs.com (localhost.tfs.com [127.0.0.1]) by critter.tfs.com (8.6.12/8.6.12) with SMTP id VAA09393; Tue, 9 Apr 1996 21:05:35 GMT X-Authentication-Warning: critter.tfs.com: Host localhost.tfs.com didn't use HELO protocol To: Paul Traina cc: current@FreeBSD.org Subject: Re: log_in_vain stuff In-reply-to: Your message of "Tue, 09 Apr 1996 00:03:49 MST." <199604090703.AAA16157@freefall.freebsd.org> Date: Tue, 09 Apr 1996 21:05:34 +0000 Message-ID: <9391.829083934@critter.tfs.com> From: Poul-Henning Kamp Sender: owner-current@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk > Poul, > Sorry to unilaterally change your defaults on you, but you just created > a security problem with the log in vain stuff. I have been out of town for a couple of days, it's OK. > You need to figure out a way to rate-limit these messages, otherwise you > can trivially knock a box into the ground with a packet generator. syslogd should rate-limit, not the kernel. The reason I left them on as default was mostly that I wanted to see if we had any bogons lurking (just like I did with phkmalloc initially). I think that they should be off by default, or possibly on, but go off after 10 messages, unless explicitly set "ON!" -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@ref.tfs.com TRW Financial Systems, Inc. Future will arrive by its own means, progress not so.