Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to the Virus.Org Mailing List Archive  
.
.


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


RE: honeyd0.8b not logging to syslog
.

  • To: "Niels Provos" <[EMAIL PROTECTED]>
  • Subject: RE: honeyd0.8b not logging to syslog
  • From: "Jeff Kloet" <[EMAIL PROTECTED]>
  • Date: Mon, 29 Nov 2004 20:48:51 -0500
  • Cc: <[EMAIL PROTECTED]>
  • Thread-index: AcTV3O7TQBcLX7PbRgG/+hGegYa+0QAoPW0A
  • Thread-topic: honeyd0.8b not logging to syslog
.
 
 
> > On Sun, Nov 28, 2004 at 10:57:19PM -0500, Jeff Kloet wrote:
> > I'm no Linux guru so I may have some of my terminology incorrect.  I
> > have a honeyd 0.5 install running daemonized that logs its
connections
> > to the local syslog facility.  I use the local syslog facility to
push
> > them out to a remote syslog server for further processing.  Has this
> > functionality changed in the newer versions of honeyd?  The honeyd
> > manual page still talks of logging to syslog facility and a local
file.
> 
> Mon, Nov 29, 2004 at 1:30 AM,  Neils Provos wrote:
> Yes, this has changed.  There is a syslog mask that determines which
> information gets logged to syslog if run normally or run under debug
> mode.  You can just change the mask to be always like in debug mode.
> Change the source code in honeyd.c to do so.
> 
> Niels.
> 

In syslog.c, I changed "setlogmask(LOG_UPTO(LOG_INFO))"  to 
"setlogmask(LOG_UPTO(LOG_DEBUG))" and then reinstalled.

Ahhh, that's the honeyd I know and love!

Thanks!
Jeff
 
.
.
 
Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.