[Cooker] [Bug 748] [msec] wrong msec syslog messages

Fri, 07 Mar 2003 12:56:47 -0800 

http://qa.mandrakesoft.com/show_bug.cgi?id=748

[EMAIL PROTECTED] changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |UNCONFIRMED
         Resolution|FIXED                       |



------- Additional Comments From [EMAIL PROTECTED]  2003-03-07 21:55 -------
hem ... you did not read the last 2 comments 
the message might be fixed but It is never put in the syslog now, 
 
and furthermore  the accept_bogus_error_responses() statement  
whether I put 0 or 1 the /etc/sysctl.conf file is not touched 
and the value is /proc unchanged. 
 
it is as if the accept_bogus_error_responses() statement is never 
executed from level.local  
that might be the reason for the absence of the syslog message. 
 
here is my level.local 
from mseclib import * 
allow_autologin(0) 
allow_user_list(0) 
allow_xserver_to_listen(0) 
enable_at_crontab(0) 
enable_dns_spoofing_protection(1,1) 
enable_ip_spoofing_protection(1,1) 
enable_log_strange_packets(1) 
accept_bogus_error_responses(1) 
enable_msec_cron(1) 
enable_pam_wheel_for_su(1) 
enable_promisc_check(0) 
enable_security_check(1) 
no_password_aging_for('root') 
no_password_aging_for('pascal') 
no_password_aging_for('ivan') 
password_aging(180, 10) 
password_history(10) 
password_length(7) 
set_shell_timeout(0) 
set_shell_history_size(-1) 
 
and security.conf 
TTY_WARN=no 
SYSLOG_WARN=no 
MAIL_WARN=yes 
MAIL_USER=root 
CHECK_UNOWNED=yes 
CHECK_SHADOW=yes 
CHECK_SUID_MD5=yes 
CHECK_SECURITY=yes 
CHECK_PASSWD=yes 
CHECK_SUID_ROOT=yes 
CHECK_PERMS=yes 
CHECK_PROMISC=no 
CHECK_WRITABLE=yes 
CHECK_OPEN_PORT=yes 
CHECK_SGID=yes 
CHKROOTKIT_CHECK=yes 
RPM_CHECK=yes 
 
 



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.



------- Reminder: -------
assigned_to: [EMAIL PROTECTED]
status: UNCONFIRMED
creation_date: 
description: 
Jan  7 07:00:21 spirit msec: Accepting bogus icmp error responses 
Jan  7 07:00:21 spirit msec: set variable net.ipv4.icmp_ignore_bogus_error_responses 
to 1 in 
/etc/sysctl.conf 
 
Shouldn't it be  Ignoring bogus icmp error responses instead of 'Accepting ' ?? 
 
I noticed several msg like that in the syslog doing msec level 3 to 4

Reply via email to