Am 30.10.2015 um 19:23 schrieb Jens Seidel: > 2015-10-30 18:59 GMT+01:00 Michael Biebl <bi...@debian.org>: >> Am 30.10.2015 um 18:56 schrieb Jens Seidel: >>> Package: rsyslog >>> Version: 8.4.2-1+deb8u1 >>> Severity: grave >> >> So rsyslog logs your (user) messages. >> I fail to see how this is a bug in rsyslog, even more a grave one? > > I'm sorry, I do not know what program to blame. What do you suggest?
Since I have no idea what this bug report is supposed to be about, I have no idea either. How exactly is it a problem of rsyslog if it writes messages which have been sent via syslog()? > Isn't it rsyslog task to write the messages? If someone sends a message via the syslog protocol, rsyslog typically writes that message to disk, yes. Duplicated messages > should be dropped (and I have seen this in the past in logs: "Message > occurred too opften, dropping it" or similar). Repeated message reduction has it's own share of problems, so this was disabled in rsyslog a long time ago. I think this has been the default since at least wheezy. You can turn that on via $RepeatedMsgReduction on if you want. That doesn't really help you though against malicious attackers. They can just as well log a random string to fill you your hard disk? What program is > responsible for this? Responsible for what? If you don't want your hard disk run full because of syslog, the only real way to do that with (r)syslog is to use a separate partition for /var/log
signature.asc
Description: OpenPGP digital signature
