OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: Queston on secure syslogd
From: Andre Gironda (andresun4c.net)
Date: Wed Apr 05 2000 - 13:10:51 CDT

I always use the syslogd flags "-ss" except when I have a syslog
server on a backhaul firewalled network.

Over the Internet, I'd be more likely to use scp, rsync, or CVSup
even though I should probably use something better like IPSec or SNMPv3.

There have got to be 4 million different ways to solve your problem.

dre

On Wed, Apr 05, 2000 at 11:26:44AM -0700, gotenlinux.sduteam.com wrote:
> Ok, I am just wondering if there is any secure alternative for syslogd.
> Since I want to send the log file via TCP/IP over the Internet, using
> 1.2.3.4 in syslogd.conf is not secure enough if that IP is not on the
> LAN.
>
> I have tried to use nsyslogd, but the SSL not seems to be working
> right. I can use Snort -dvC to read all the content in clear text when
> nsyslogd send message thru UDP port 514. Any suggestions?
>
> rgd,
> Derek
>
> ps. I have tried ssyslogd also, it won't even compile on FreeBSD 4.0. 

-- 
This program has been brought to you by the language C and the number F.

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message