Re: [SAGE] Re: Official sudosh announcement

["Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>]

On Fri, 2004-10-01 at 12:44, Doug Hanks wrote:
> I see your attitude is just as worse as Bill's if not worse.  I'll
> assume this isn't the general attitude of SAGE?

If disagreeing with anything you say counts as "attitude", I think
you'll find we all have it.  Most of us expect constructive criticism;
it helps us improve what we do.

> You mentioned that using another logging mechanism other than syslog
> would be a good idea.  Can you please explain another mechanism that
> is more secure than syslog, and most importantly, impervious to
> tampering?  I would more than likely consider such an idea in my new
> release.

"ssyslog" (secure syslog) can be configured to log encrypted,
tamper-proof messages over TCP.  "syslog" logs plaintext with no message
verification and no access controls on the server, which implicitly
trusts the data in whatever log messages it receives, and logs over UDP
which has makes no guarantees whatsoever about delivering log messages. 
(No, the syslog protocol itself doesn't make such guarantees either.)

Just one example.

-- 
brandon s. allbery    [linux,solaris,freebsd,perl]     allbery@kf8nh.com
system administrator      [WAY too many hats]        allbery@ece.cmu.edu
electrical and computer engineering, carnegie mellon univ.         KF8NH