Can you express an opinion on the following patch? Right
off the top of my head I can't see a security problem, as
the connection will always be one way, and remote
host (I presume) could be made configurable, i.e.
if remote host is configured, then syslogd starts up with
-r, otherwise not.
--- sysklogd-7.2/sysklogd-1.4.1rh/redhat/syslog Fri Jan 19 12:10:55 2001
+++ sysklogd/sysklogd-1.4.1rh/redhat/syslog Thu Nov 29 14:18:05 2001
@@ -3,7 +3,7 @@
# -r enables logging from remote machines
# -x disables DNS lookups on messages recieved with -r
# See syslogd(8) for more details
+SYSLOGD_OPTIONS="-m 0 -r"
# Options to klogd
# -2 prints all kernel oops messages twice; once for klogd to decode, and
# once for processing with 'ksymoops'
-r is the switch to enable *recieving* remote logs, not sending of them. So this
makes it listen by default.
Um, yup, my bad.
Any chance this can be made configurable in order to support
thin clients more effectively? I mean something like adding
a remote logging configuration switch, -r enable if
configuration thingy is turned on?
And please remember that I'm just a messenger here, I
don't mean to be tedious.
The remote logging configuration is all done in the config file; that's where
the server is specified, etc.