On Wed, Jan 03, 2024 at 07:10:46PM +0100, Alexander Reichle-Schmehl wrote:
> Yes, it is the daemon responsible to receive and store log files from
> other hosts running sudo. As most people will need it, it makes sense
> to split it of. However, if you do so, that package should IMHO use
> ssl.
Hi Marc,
* Marc Haber [240103 18:00]:
> Would it be very unfriendly to indeed suggest using stunnel instead of
> native SSL?
Not at all, that's why I mentioned it in the first place ;)
> What is a motivation to use sudo_logsrvd instead of normal
> syslog?
Well... Because sudo_logsrvd can do
Hi Alexander,
thanks for your patch. I am indeed reluctant to have OpenSSL added as a
dependency to sudo. This might open a can of worms; other team members
might give their opinion here as well.
And since we just are working on getting rid of sudo-ldap, having a
variant, sudo-ssl, would
Package: sudo
Version: 1.9.5p2-3+deb11u1
Severity: wishlist
Tags: patch
Dear Maintainer,
sudo 1.9 introduced the functionality to directly send log files (especially
input/output logs) to a log server. As these logs might contain private data,
they should be transfered using ssl. Both sudo as
4 matches
Mail list logo