[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

tcplogd causing minor accept() trauma in authsrv (fwtk)...




Any of you guys running the fwtk?  I posted this in their list and
got no reply so I'll try it here...


Things seem to be working in general.  When I telnet from an untrusted
network, I can authenticate properly and use the proxy.  I am noticing a bit
of junk seems to be introduced into the brand new (2nd ?) connection when
tcplogd is running which authsrv reads and logs as bogus (-DDEBUG):

 No tcplogd (normal):

  netacl[4920]: permit host=it.dm.com/10.30.88.88 service=telnetd
    execute=/usr/local/etc/tn-gw
  tn-gw[4920]: permit host=it.dm.com/10.30.88.88 use of gateway
  authsrv[4921]: srvsay Authsrv ready. (V2.1) 
  tn-gw[4920]: auth_recv Authsrv ready. (V2.1) 
  ...

 With tcplogd:

  tcplogd: telnet connection attempt from unknown@it.dm.com [10.30.88.88]
  netacl[4943]: permit host=it.dm.com/10.30.88.88 service=telnetd
    execute=/usr/local/etc/tn-gw
  tn-gw[4943]: permit host=it.dm.com/10.30.88.88 use of gateway
  authsrv[4944]: srvsay Authsrv ready. (V2.1) 
  tn-gw[4943]: auth_recv Authsrv ready. (V2.1) 
  authsrv[4947]: srvsay Authsrv ready. (V2.1) 
  authsrv[4947]: srvhear 3315,7777 
  authsrv[4947]: unrecognized command: 3315,7777
  authsrv[4947]: srvsay Command "3315,7777" unrecognized. 
  tcplogd: authsrv connection attempt from ?ª^D@^A@localhost [127.0.0.1]
  tcplogd: auth connection attempt from localhost [127.0.0.1]
  ...

I'm new to Debian Linux (distro v.2.1) and consequently tcplogd.

Do I _want_ to run tcplogd?  Is this a bug or a feature in tcplogd?

Thanks,

- Tor


Reply to: