>>>>> "Rainer" == Rainer Gerhards <[EMAIL PROTECTED]> writes:
>> I wonder why an operator would choose to use a TLS transport
>> without authentication, rather than simply using a non-secure
>> transport.
Rainer> To prevent casual observation. In my experience, this is
Rainer> the primary driving force behing syslog/ssl
Rainer> deployments. And, yes, I agree we should educate operators
Rainer> to use authentication, too.
Rainer> Rainer
To be more specific, passive attackers cannot influence the integrity
or confidentiality of messages.
In addition, active attackers who do not attack existing connections
are unaware of the contents of syslog messages that are sent.
_______________________________________________
Syslog mailing list
Syslog@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/syslog
