Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: working on a new syslogd.

From: Hubert Weikert <weikert () muninn cube net>
Date: Wed, 8 Jul 1998 22:29:07 +0200 (CEST)
1998-07-03-04:08:41 Darren Reed:

Over the past few months, I've spent some time (increasingly less
recently :-() on writing a new syslogd.


One improvement which I would wish to include is a mechanism similar to
the mechanism used for ssyslog. Details under
  http://www.core-sdi.com/ssyslog/


From the above webpage:

 Description:
   A new cryptographically secure system logging tool is available for
   UNIX systems. Designed to replace the syslog daemon,
   ssyslog implements a cryptographic protocol called PEO-1 that allows
   the remote auditing of system logs. Auditing remains
   possible even if an intruder gains superuser privileges in the system,
   the protocol guarantees that the information logged
   before and during the intrusion process cannot be modified without the
   auditor (on a remote, trusted host) noticing.

Hubert

----------------------------------------------------------------------------
Hubert Weikert  DB1MQ  Member of DARC (www.darc.de) and FITUG (www.fitug.de)
weikert () cube net  weikert () debian org  weikert () compuserve com  www.weikert.de
Key= 21978C61  fingerprint= 99 38 A5 83 C8 76 F4 E1  A7 9C B9 70 9A A7 70 10
Previous By Date Next
Previous By Thread Next

Current thread: