Re: SoC: Improve syslogd

["Rainer Gerhards" <rgerhards%gmail.com@localhost>]

Oops, sorry, I forgot the pointers to the IETF mailing list. I think
these are the most relevant:

http://www.ietf.org/mail-archive/web/syslog/current/msg01855.html
http://www.ietf.org/mail-archive/web/syslog/current/msg01852.html

Rainer

On Fri, May 9, 2008 at 9:12 AM, Rainer Gerhards <rgerhards%gmail.com@localhost> 
wrote:
> Hi,
>
> I am looking for use cases for TLS protected syslog. There is a new
> discussion on the IETF mailing list[1] of what must be supported by
> the standard and what not. I would like to base that discussion on
> actual use cases. That will help drive the relevant syslog standard
> into the right direction, what is necessary to make sure that TLS
> implementation will focus on the real-world needs. I have set up a
> wiki page for this:
>
> http://wiki.rsyslog.com/index.php/TLS_for_syslog_use_cases
>
> I would appreciate contributions, preferably by direct wiki edits. But
> you may also simply mail me and I can integrate it.
>
> Please provide feedback, it is extremely useful to get things done
> correctly. And as it looks, this must be settled quickly...
>
> Rainer
>
>
> On Tue, May 6, 2008 at 11:38 PM, Martin Schütte 
> <lists%mschuette.name@localhost> wrote:
>> Rainer Gerhards schrieb:
>>>>
>>>>  One could argue if disabling authentication is a desirable
>>>> "authentication
>>>> option"  :-)
>>>
>>> I think this is a loophole and not the intent of the I-D ;)
>>
>> I would argue it is.
>> If the admin wants to implement a local policy of 'best effort' then that
>> should be possible. It just has to be clear which configuration leads to
>> which kind of behaviour (and security level).
>>
>> --
>> Martin
>>
>