On Tue, Mar 18, 2014 at 4:56 PM, Michael Biebl <bi...@debian.org> wrote:
> Am 14.11.2013 16:23, schrieb Guido Günther: > > Package: rsyslog-gnutls > > Severity: wishlist > > > > Hi, > > It seems we currently doesn't make any recommendations concerning ports > > for syslog-tls usage. RFC 5425 uses 8514 - should we add something like > > this as a (commented out) rsyslog.d/tls snippet? > > Makes sense, I guess. That said, looking at my /etc/services, I get > syslog-tls 6514/tcp # Syslog over TLS [RFC5425] > > I just checked, 6514 is the iana-assigned one [1]. Where have you seen 8514? > Rainer, what's your take on this as upstream? Should e.g. [0] be updated > accordingly? You seem to recommend port 514. > Will check tomorrow. That was probably before the IANA assignment was there and as such should be corrected. > So now I'm a bit confused :-) > > > Once we have determined, what the actual recommended port is, I might > consider adding a debian/rsyslog-gnutls.README.Debian. > Want to help me write a short README how to setup a basic configuration > "short" and TLS does not play well. Actually [0] you quoted IMHO just has the bare basic facts, so I think it's the shortest one that can be written without causing confusion. Especially the cert generation process must be followed exactly, else there are a myriad of problems. Maybe someone with better writing skills than me can trim it down... Rainer [1] http://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml?search=syslog > and with a recommendation for the port? > > [0] http://www.rsyslog.com/using-tls-with-relp/ > -- > Why is it that all of the instruments seeking intelligent life in the > universe are pointed away from Earth? > >
