Am 16.03.2018 um 11:42 schrieb Torsten: > Hi! > > On my OpenBSD 6.2 syslogd is listening to port 514, even though it is > not started with "-r" (to receive remote syslog messages). It does not > actually seem to log anything if I send something to port 514 UDP, > however, I want the machine to be invisible when someone is probing for > open ports. I know I could use PF as a workaround, but can't I not > prevent syslogd from opening that port in the first place?
The command line option is "-u" to receive remote syslog messages. If that option is not given and no logging rules exist to send to a remote host the socket is closed per default since 6.2. Perhaps you are logging to a remote host? The syslogd here on my 6.2 system has not opened port 514. Kind regards Markus
