Re: local users can panic linux kernel (was: SuSE syslogdadvisory)

From: A. Steinmetz (astmailat_private)
Date: Wed Nov 24 1999 - 01:40:33 PST

Next message: Aleph One: "Security Bulletins Digest"

Previous message: Shafik Yaghmour: "Re: local users can panic linux kernel (was: SuSE syslogdadvisory)"
Next in thread: Goetz Babin-Ebell: "Re: local users can panic linux kernel (was: SuSE syslogdadvisory)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

To add to Shafik's statement, now all you have to do to is to put a system
under high (log) load for any attack to go possibly unlogged? This leaves
me somewhat sleepless...

--- Shafik Yaghmour <shafikat_private> wrote:
> 	So if you have a high system load it is okay to have some of the
> syslog messages lost? Hmm, I dunno, IMHO it is never okay, I mean why
> should you open up the opportunity at all. You know, security based on
> something being "not so prone to failure" doesn't exactly make me feel
> warm and cozy.
>
> On Tue, 23 Nov 1999, Jefferson Ogata wrote:
>
> > I think it should be pointed out that datagram messages to a Unix
> domain socket
> > don't suffer the same network load losses that datagram messages
> across an
> > ethernet do. The quality of reception will generally be based purely
> on system
> > load, since an external network is not involved. You won't be losing
> lots of log
> > messages on account of a large file transfer between two other hosts.
> >
> > Therefore, I think reliance on datagram-based syslog to a Unix domain
> socket is
> > not so prone to failure as some other posters have implied.
> >
> > --
> > Jefferson Ogata <jogataat_private> National Oceanographic Data
> Center
> > You can't step into the same river twice. -- Herakleitos
> >
>
>
==========================================================================
> --"the more you know and understand the more you must know and
> understand
>    .. knowledge is an unsatiable hunger .. which makes life easier and
> at
>    the same time harder .... knowledge is a paradox w/ no resolution
> just
>    a boundless function of human nature .... knowledge is a trap which
> we
>    embrace and which we run away from .... and in the end the only
> escape
>    is death .... or maybe not "<grin>--
>
==========================================================================
>                      -Unite for Java! - http://www.javalobby.org-
>                      -This message transmitted on 100% recycled
> electrons-
>                      -Save the whales, Feed the hungry, Free the
> mallocs-
>
>
> Two cats on a roof,
> Which one falls off first?
> The one with the smaller mew.
>


=====
Cheers -
A. Steinmetz

---------------------------------------------
Beam me up, Scotty.
There is no intelligent life down in Redmond.

__________________________________________________
Do You Yahoo!?
Thousands of Stores.  Millions of Products.  All in one place.
Yahoo! Shopping: http://shopping.yahoo.com

Next message: Aleph One: "Security Bulletins Digest"
Previous message: Shafik Yaghmour: "Re: local users can panic linux kernel (was: SuSE syslogdadvisory)"
Next in thread: Goetz Babin-Ebell: "Re: local users can panic linux kernel (was: SuSE syslogdadvisory)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:14:00 PDT