Re: syslogd_flags in /etc/defaults/rc.conf
On Mon, Mar 20, 2000 at 09:45:49AM -0800, Nick Johnson wrote: I'm curious to see if anyone is like-minded with me that syslogd_flags in /etc/defaults/rc.conf should be "-ss" instead of "". I reasoned that it should be, considering: 1. Most people don't direct syslogs at other machines in my experience. 2. Someone could conceivably DOS a machine by directing tons of crap at port 121, which is also noted in the BUGS section of the syslogd manpage. 3. Syslogd runs as root, and while it is a mature piece of code, I think it preferable to minimize the number of root applications listening on sockets. This seems like a reasonable change. Thanks for pointing this out! :) -- Will Andrews [EMAIL PROTECTED] GCS/E/S @d- s+:++:- a---+++ C++ UB P+ L- E--- W+++ !N !o ?K w--- ?O M+ V-- PS+ PE++ Y+ PGP t++ 5 X++ R+ tv+ b++ DI+++ D+ G+ e- h! r--+++ y? To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-current" in the body of the message
syslogd_flags in /etc/defaults/rc.conf
I'm curious to see if anyone is like-minded with me that syslogd_flags in /etc/defaults/rc.conf should be "-ss" instead of "". I reasoned that it should be, considering: 1. Most people don't direct syslogs at other machines in my experience. 2. Someone could conceivably DOS a machine by directing tons of crap at port 121, which is also noted in the BUGS section of the syslogd manpage. 3. Syslogd runs as root, and while it is a mature piece of code, I think it preferable to minimize the number of root applications listening on sockets. Nick -- "Why do so many people concern themselves so much with the private affairs of complete strangers?" - Me My PGP public key:http://www.spatula.net/pubkey.txt Nick Johnson, version 1.5 http://www.spatula.net/ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-current" in the body of the message
Re: syslogd_flags in /etc/defaults/rc.conf
Nick Johnson wrote: I'm curious to see if anyone is like-minded with me that syslogd_flags in /etc/defaults/rc.conf should be "-ss" instead of "". I reasoned that it should be, considering: 1. Most people don't direct syslogs at other machines in my experience. While I am one of those people that does redirect syslogs to other machines, I agree with your change. 2. Someone could conceivably DOS a machine by directing tons of crap at port 121, which is also noted in the BUGS section of the syslogd manpage. 3. Syslogd runs as root, and while it is a mature piece of code, I think it preferable to minimize the number of root applications listening on sockets. Nick -- Joseph Scott [EMAIL PROTECTED] Office Of Water Programs - CSU Sacramento To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-current" in the body of the message