Bug#158090: security.debian.org: Easy for any user to fake messages into syslog
Martin Schulze <joey@infodrom.org> writes:
> The socket is world writable, glibc's syslog() function writes
> to it, from any program. Restricting its write access to root
> would effectively disable syslogging.
yeah, i kinda gathered that.. That' why what i am proposing is --
Keep the current behavior, but log just one additional info ---> who
it is that wrote via syslog---so later the sysadmin can tell which is
a legit. message and which is not.
[But dunno, you guys know much better than this newbie :-) ]
Reply to: