WashamFan wrote:
> Hi,
>
> It seems to me that both "originator" and "signer" are identified
> by (HOSTNAME, APP-NAME, PROCID) triple. So how to understand
> an originator across multiple signers?
>
> In the other hand, does it make sense a signer across multiple
> originators. Imagine that, a syslog daomon collects logs from
> multiple applications with different APP-NAME per application,
> and the syslog daemon signs all the logs with different APP-NAMEs
> In that case, does each originator exchange its cert blocks
> independently?
My expectation was that the syslog daemon would use its own APP-NAME
("syslogd" or something) and PROCID for the Certificate/Signature
Block messages, not the APP-NAME from the messages being
signed ("sendmail" or "crond" or something).
Best regards,
Pasi
_______________________________________________
Syslog mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/syslog
