Hi, I have been reviewing syslog-sign-07 and notice that it states the following "Syslog messages are sent over unreliable transport, which means that they can be lost in transit..."
How does this square with use of the BEEP version of syslog? Is the intention to use signing only with the UDP transport? SYSLOG-REL is in the references of sign-07 but I couldn't find an actual reference in the text. One other point is that when using reliable syslog with authentication and encryption, this addresses many of the security requirements of syslog-sign (origin authentication, detection of missing messages, etc), at least within a particular session. The crypto overhead would probably be less, too. However there still could be an application for using both together, and in particular for having collectors and/or relays use syslog-sign "on behalf of" a peer connected via syslog-rel. Are proxy signatures of this type envisaged, and if so are they within the scope of syslog-sign? Cheers, Frank
