Bugtraq mailing list archives
Re: syslogd
From: l39915 () alfa ist utl pt (Nelson Escravana)
Date: Wed, 29 May 1996 02:49:18 GMT
At 03:28 PM 5/28/96 -0400, you wrote:
What solutions have people used to restrict which hosts can send stuff to their syslogd?
1) Install a Firewall in your network 2) The easy one!!! give the comand: mknod /etc/whatever p to create a named pipe, edit /etc/syslog.conf , quote every line out, and cretate one: *.* /etc/whatever Then write a small program to: 1. Open the File. 2. Wait for input 3. Filter that input 4. Write what you want, on your LOG file. 5. get back to 2. I ve something like that working, but everything is hardcoded... This is not the BEST way to solve it... but it works, WARNING: launch your program FIRST than syslogd, or syslogd, will be killed, cuz there's no one reading the pipe!! for an eg. give me a mail! ---------------------------------------------------------------------------- ------------------------------------------------------- Nelson Escravana - IST - Electronic Eng. Student l39915 () alfa ist utl pt PGP Availabel on request. I know not with what weapons World War III will be fought. But World War IV wil be fought with sticks and stones. A. E.
Current thread:
- Re: syslogd Nelson Escravana (May 28)
- Re: syslogd Andrew V. Stesin (Jun 03)
- Re: syslogd Perry E. Metzger (Jun 03)
- <Possible follow-ups>
- Re: syslogd Jeff Uphoff (Jun 04)