On Tue, 4 Feb 2003, Juergen Tritthardt wrote:

> But why has syslog been restarted again three times and what does
> "set{u,g}id pid 500 (netstat) was invoked with fd 0, 1, or 2 closed" mean?

It is telling you that it is fixing a potential security issue.

See
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:23.stdio.asc

Also see thread "fd 0/1/2"
http://mail-index.netbsd.org/tech-security/2002/05/

There also were some other discussions about it.

Basically, this means that maybe another program can reopen those file
descriptors. A workaround is to open to /dev/null.

   Jeremy C. Reed

   http://www.bsdnewsletter.com/