[12713] in bugtraq
Re: local users can panic linux kernel (was: SuSE syslogdadvisory)
daemon@ATHENA.MIT.EDU (A. Steinmetz)
Wed Nov 24 11:58:03 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19991124094033.17826.rocketmail@web124.yahoomail.com>
Date: Wed, 24 Nov 1999 01:40:33 -0800
Reply-To: "A. Steinmetz" <astmail@YAHOO.COM>
From: "A. Steinmetz" <astmail@YAHOO.COM>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
To add to Shafik's statement, now all you have to do to is to put a system
under high (log) load for any attack to go possibly unlogged? This leaves
me somewhat sleepless...
--- Shafik Yaghmour <shafik@ACM.POLY.EDU> wrote:
> So if you have a high system load it is okay to have some of the
> syslog messages lost? Hmm, I dunno, IMHO it is never okay, I mean why
> should you open up the opportunity at all. You know, security based on
> something being "not so prone to failure" doesn't exactly make me feel
> warm and cozy.
>
> On Tue, 23 Nov 1999, Jefferson Ogata wrote:
>
> > I think it should be pointed out that datagram messages to a Unix
> domain socket
> > don't suffer the same network load losses that datagram messages
> across an
> > ethernet do. The quality of reception will generally be based purely
> on system
> > load, since an external network is not involved. You won't be losing
> lots of log
> > messages on account of a large file transfer between two other hosts.
> >
> > Therefore, I think reliance on datagram-based syslog to a Unix domain
> socket is
> > not so prone to failure as some other posters have implied.
> >
> > --
> > Jefferson Ogata <jogata@nodc.noaa.gov> National Oceanographic Data
> Center
> > You can't step into the same river twice. -- Herakleitos
> >
>
>
==========================================================================
> --"the more you know and understand the more you must know and
> understand
> .. knowledge is an unsatiable hunger .. which makes life easier and
> at
> the same time harder .... knowledge is a paradox w/ no resolution
> just
> a boundless function of human nature .... knowledge is a trap which
> we
> embrace and which we run away from .... and in the end the only
> escape
> is death .... or maybe not "<grin>--
>
==========================================================================
> -Unite for Java! - http://www.javalobby.org-
> -This message transmitted on 100% recycled
> electrons-
> -Save the whales, Feed the hungry, Free the
> mallocs-
>
>
> Two cats on a roof,
> Which one falls off first?
> The one with the smaller mew.
>
=====
Cheers -
A. Steinmetz
---------------------------------------------
Beam me up, Scotty.
There is no intelligent life down in Redmond.
__________________________________________________
Do You Yahoo!?
Thousands of Stores. Millions of Products. All in one place.
Yahoo! Shopping: http://shopping.yahoo.com
