[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Internal WG Review: Recharter of Security Issues in Network Event Logging (syslog)

To: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>
Subject: Re: Internal WG Review: Recharter of Security Issues in Network Event Logging (syslog)
From: "C. M. Heard" <heard@pobox.com>
Date: Wed, 4 Jan 2006 06:22:09 -0800 (PST)
Cc: "Mreview (E-mail)" <mreview@ops.ietf.org>
In-reply-to: <7D5D48D2CAA3D84C813F5B154F43B15508FC8921@nl0006exch001u.nl.lucent.com>

On Wed, 4 Jan 2006, Wijnen, Bert (Bert) wrote:
> This is still in internal IESG/IAB review. But if any of you has
> early comments, pls do send them asap (before Thursday 11am
> EST).

One minor comment:  the first paragraph of the proposed charter
says:

> Syslog is a de-facto standard for logging system events.  
> However, the protocol component of this event logging system has
> not been formally documented.  While the protocol has been very
> useful and scalable, it has some known security problems which
> were documented in RFC 3164.

I am somewhat confused by the statements "the protocol component of
this event logging system has not been formally documented."  I
thought RFC 3164, whose title is "The BSD syslog Protocol" did
exactly that.  I suspect that others may be confused too.

//cmh

References:
- Internal WG Review: Recharter of Security Issues in Network Event Logging (syslog)
  - From: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>

Prev by Date: Re: Internal WG Review: Recharter of Security Issues in Network Event Logging (syslog)
Next by Date: FW: Internal WG Review: Recharter of Security Issues in Network E vent Logging (syslog)
Previous by thread: Re: Internal WG Review: Recharter of Security Issues in Network Event Logging (syslog)
Next by thread: RE: Internal WG Review: Recharter of Security Issues in Network E vent Logging (syslog)
Index(es):
- Date
- Thread