#
b6f7dd71 |
| 13-Sep-2000 |
sommerfeld <sommerfeld@NetBSD.org> |
prevent one byte overrun in printline()
|
#
ea7e9f51 |
| 02-Jul-2000 |
jwise <jwise@NetBSD.org> |
Fix minor thinko in previous. Make sure we close and keep closed all sockets in the situation where all of the following are true:
* /etc/syslogd.conf contained forwarding actions when we were
Fix minor thinko in previous. Make sure we close and keep closed all sockets in the situation where all of the following are true:
* /etc/syslogd.conf contained forwarding actions when we were started up or when we last received a HUP
* /etc/syslogd.conf has had all forwarding actions removed
* we are running with -s
and we receive a HUP.
show more ...
|
#
9b22831f |
| 30-Jun-2000 |
jwise <jwise@NetBSD.org> |
Fix opening/closing of sockets when receiving a HUP, and /etc/syslog.conf has been changed from having forwarding actions to having none, or vice versa.
|
#
ccb04760 |
| 30-Jun-2000 |
jwise <jwise@NetBSD.org> |
Improve behavior of `syslogd -s'.
Even if we are forwarding, don't bind to udp/514 if running with `-s'.
|
#
20abf178 |
| 30-Jun-2000 |
jwise <jwise@NetBSD.org> |
Back out and redo previous at Bill Sommerfeld's <sommerfeld@netbsd.org> request:
instead of the -S flag, fix the -s flag to not open a socket if there are no forwarding rules in /etc/syslog.conf
Back out and redo previous at Bill Sommerfeld's <sommerfeld@netbsd.org> request:
instead of the -S flag, fix the -s flag to not open a socket if there are no forwarding rules in /etc/syslog.conf
The behavior of syslogd when -s is specified and there are forwarding rules should still be made cleaner.
show more ...
|
#
3258a51b |
| 30-Jun-2000 |
jwise <jwise@NetBSD.org> |
1.) bring usage text up to date, and clarify description of `-s' option in man page and comments -- for some time it has no longer prevents an inet socket from being opened, just caused it to
1.) bring usage text up to date, and clarify description of `-s' option in man page and comments -- for some time it has no longer prevents an inet socket from being opened, just caused it to be ignored
2.) Fix this problem with `-s' -- syslogd always opens an inet socket, even if -s is specified and it has nowhere to send to. This socket is then shutdown(), but there is no way to not have this socket open.
Users setting up paranoid installations can now specify `-S' which prevents any non-unix-domain sockets from being opened, even if forwarding is specified in /etc/syslogd.conf.
As per the previous fix, this is not made the default for `-s', as it also prevents syslogd from forwarding log messages.
3.) document the above in the man page and usage.
Justification: in light of the possibility of future DoS attacks, or the desire to set up a machine which is relatively uninformative in the face of port scans, users may quite legitimately want to control what sockets are open on their machine. Telling such users that they cannot run syslogd is non-ideal.
show more ...
|
#
315a29d6 |
| 18-Feb-2000 |
lukem <lukem@NetBSD.org> |
* in secure mode (-s), still open the inet sockets but do a shutdown(,SHUT_RD) on each of them, and don't bother listening on them. this allows messages to be forwarded even with -s enabled.
X
* in secure mode (-s), still open the inet sockets but do a shutdown(,SHUT_RD) on each of them, and don't bother listening on them. this allows messages to be forwarded even with -s enabled.
XXX: not 100% sure if this is susceptable to a DoS, e.g someone filling up kernel buffers with a backlog of packets not being read, but shutdown(2) should prevent that even if it possibly doesn't at this time.
* minor KNF
show more ...
|
#
af2a74fd |
| 13-Dec-1999 |
itojun <itojun@NetBSD.org> |
use sizeof(foo) instead of hardcoded value, to help synchronizing variable def and function parameter.
|
#
8ad73e92 |
| 07-Dec-1999 |
ad <ad@NetBSD.org> |
RCSID police.
|
#
4ba0077a |
| 06-Dec-1999 |
itojun <itojun@NetBSD.org> |
be more friendly with non-IPv6 kernel.
|
#
9d1c5f0b |
| 02-Dec-1999 |
itojun <itojun@NetBSD.org> |
IPv6 support in syslogd. actually we need library update as well. NetBSD PR #8934 from Feico Dillema <dillema@acm.org> (with memory leak fix).
|
#
6663793e |
| 27-Nov-1999 |
mrg <mrg@NetBSD.org> |
add some debug messages.
|
#
b04ab05d |
| 07-Jun-1999 |
lukem <lukem@NetBSD.org> |
save/restore errno as necessary (printf() et al might have modified it...)
|
#
78688ba7 |
| 06-Jun-1999 |
thorpej <thorpej@NetBSD.org> |
Use pidfile(3).
|
#
f41d893c |
| 28-Feb-1999 |
tron <tron@NetBSD.org> |
Because the old bound check is used at several places we need to make sure that the array is really NULL terminated. Fixes PR bin/7062.
|
#
4bcb8b3a |
| 28-Feb-1999 |
pk <pk@NetBSD.org> |
Correct precedence in calculation of storage for pollfds.
|
#
925f5063 |
| 28-Feb-1999 |
tron <tron@NetBSD.org> |
- Don't use static array hack if neither "-p" nor "-P" are used. - Because the logsocket array is not NULL terminated use the entry number for bound checks.
|
#
c87ec395 |
| 28-Feb-1999 |
tron <tron@NetBSD.org> |
Use correct expression "sizeof(char *)" instead of "sizeof(char **)" to calculate memory size.
|
#
19ef5d75 |
| 21-Feb-1999 |
mrg <mrg@NetBSD.org> |
- allow -p /log/socket to appear more than once (and work as expected if given this). this is extremely useful for chrooted daemons that still want to create log entries via a local mechanism.
- allow -p /log/socket to appear more than once (and work as expected if given this). this is extremely useful for chrooted daemons that still want to create log entries via a local mechanism.
- create a new -P option that takes a filename of log sockets (equiv. of calling syslogd which -p <each line of file>. this is useful for the case of many chroot areas and keeping this information in one place rather than having to remember it all.
if no -p options are given, the default (_PATH_LOG) is used as normal.
show more ...
|
#
0ffcc8e9 |
| 30-Jul-1998 |
tron <tron@NetBSD.org> |
Use "[host]: " as prefix for forwarded messages to distinguish them from message originated by the forwarding host, fixes PR bin/5860 by Greg A. Woods.
|
#
786b86d7 |
| 18-Jul-1998 |
lukem <lukem@NetBSD.org> |
use AF_LOCAL instead of AF_UNIX
|
#
32f51971 |
| 06-Jul-1998 |
mrg <mrg@NetBSD.org> |
- use an array MAXHOSTNAMELEN+1 size to hold hostnames - ensure hostname from gethostname() is nul-terminated in all cases - minor KNF - use MAXHOSTNAMELEN over various other values/defines - be safe
- use an array MAXHOSTNAMELEN+1 size to hold hostnames - ensure hostname from gethostname() is nul-terminated in all cases - minor KNF - use MAXHOSTNAMELEN over various other values/defines - be safe will buffers that hold hostnames
show more ...
|
#
f6c179f1 |
| 08-May-1998 |
kleink <kleink@NetBSD.org> |
Fix arithmetics lossage on typeless pointers.
|
#
bc13fc92 |
| 24-Oct-1997 |
mrg <mrg@NetBSD.org> |
prefer snprintf() to sprintf()
|
#
47852f1f |
| 17-Oct-1997 |
lukem <lukem@NetBSD.org> |
getopt returns -1 not EOF
|