Date: Sun, 03 Mar 2002 17:42:51 -0800 From: "Ronald F. Guilmette" <rfg@monkeys.com> To: freebsd-questions@freebsd.org Subject: Wanted: syslog-type logging over TCP Message-ID: <38808.1015206171@monkeys.com>
next in thread | raw e-mail | index | archive | help
I need to move syslog-like log records over a TCP connection, and I'm looking for any existing tools that might be useful for doing that. If none exist, I will be forced to write one, or, more accurately, a pair of tools (one sender and one receiver). Why TCP you ask? Well, moving log records by just shoving them out as UDP messages is inferior to using TCP for a variety of reasons, but the one that I'm most concerned about is the security aspect. The source IP address of UDP packets can be easily spoofed. It's much harder for the data source to spoof like he is somebody else when the packets are being sent over a TCP connection... at least if you have a good TCP sequence number generation algorithim. So if you know of any tools that I might use directly, or leverage from, i.e. tools that can send ``single line'' log records from here to there using TCP, please write and tell me about those. (If you get snagged by my spam filtering, use http://www.monkeys.com/contact.html.) Another (perhaps obvious) requirement: The program that sends the log records has to be reasonably robust in the face of lost connections. When and if the connection to the logging host is lost, the sender program should make some reasonable efforts to reestablish it. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?38808.1015206171>