From owner-freebsd-security Fri Jun 27 06:43:14 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA22012 for security-outgoing; Fri, 27 Jun 1997 06:43:14 -0700 (PDT) Received: from limbo.senate.org (nathan@senate.org [204.141.125.38]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA22003 for ; Fri, 27 Jun 1997 06:43:07 -0700 (PDT) Received: (from nathan@localhost) by limbo.senate.org (8.8.5/8.8.5) id JAA04122 for freebsd-security@freebsd.org; Fri, 27 Jun 1997 09:43:05 -0400 (EDT) Date: Fri, 27 Jun 1997 09:43:05 -0400 (EDT) From: Nathan Dorfman Message-Id: <199706271343.JAA04122@limbo.senate.org> To: freebsd-security@freebsd.org Subject: ICMP Logging Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Is there a way for the kernel to syslog(3) all ICMP messages? This would serve two purposes; a) as I have all syslog messages directed to an unused vty I could observer such DoS attacks in progress and b) if they are stored in the log files I could use the logs in case the matter needed to be pursued further. If this is not a part of the current kernel, it would (IMO) be a very good addition to -current and -stable. If you *are* planning on adding it soon, please let me know and I'll hold off my upgrade (I'm currently running 2.2.1- RELEASE and wanted to upgrade to -stable).