On Mon, Sep 29, 2003 at 09:47:47AM -0400, Jesse Guardiani wrote: > Why not? I think it's useful to log the TCPREMOTEHOST and TCPREMOTEIP. > That way you can be 100% sure that a virus is coming from a computer > on your local network, and that it's not forged.
That's what the RC:[01] value is for!!! BTW: syslog records can not be infinite in length. That's why a lot of information is never going to show up in the Q-S logs. There just isn't room... -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
