Date: Tue, 25 May 1999 01:20:33 -0400 From: Jason Garman <garman@earthling.net> To: wkt@cs.adfa.edu.au Cc: security@FreeBSD.ORG Subject: Re: TCP connect data logger Message-ID: <19990525012032.A25197@fw.garman.net> In-Reply-To: <199905250414.OAA03109@henry.cs.adfa.edu.au>; from Warren Toomey on Tue, May 25, 1999 at 02:14:06PM %2B1000 References: <19990525000758.A14670@fw.garman.net> <199905250414.OAA03109@henry.cs.adfa.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, May 25, 1999 at 02:14:06PM +1000, Warren Toomey wrote: > The sysctl net.inet.udp.log_in_vain option seems to be the one. > Maybe it doesn't log the contents, just some of the headers. > I haven't used it yet. > Last time I used this option (2.2.8-RELEASE), it only logged the packet headers to syslog. Something like this: Connection attempt to UDP x.x.x.x:port from y.y.y.y:port theres also a tunable net.inet.tcp.log_in_vain which does the same thing for TCP packets. enjoy -- Jason Garman http://wedgie.org/ Student, University of Maryland garman@earthling.net Story of the week: Whois: JAG145 http://www.theonion.com/onion3518/telemarketing_sale.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990525012032.A25197>