Date: Wed, 26 May 1999 14:05:14 +0200 (CEST) From: Martin Kammerhofer <dada@balu.kfunigraz.ac.at> To: security@FreeBSD.ORG Subject: Re: TCP connect data logger Message-ID: <Pine.BSF.3.96.990526135851.8495D-100000@localhost.kfunigraz.ac.at> In-Reply-To: <19990525012032.A25197@fw.garman.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 25 May 1999, Jason Garman wrote: > Last time I used this option (2.2.8-RELEASE), it only logged the packet > headers to syslog. Something like this: > > Connection attempt to UDP x.x.x.x:port from y.y.y.y:port > > theres also a tunable net.inet.tcp.log_in_vain which does the same thing > for TCP packets. > Both udp.log_in_vain and tcp.log_in_vain have *no* rate limiting. Enabling them can generate huge amounts of LOG_INFO messages during port scans. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.990526135851.8495D-100000>