Syslog-sec-misc @ SF: RE: C, and objective-C, programmer for secure syslog needed
Status: Abandoned
Brought to you by:
albert-thuis
From: Albert M. <al...@mo...> - 2003-04-11 10:36:53
|
Graeme Kerry writes: > I am quite interested in your project. Could you give me some > more info as to what your goals for the endproduct are. > I can program in C and run Slackware Linux 8.1 on one of my > machines. Hello Graeme, The purpose of this project is simple: be the first open implementation of "secure syslog". Recently (for some time:-), there is an IETF WG about "secure syslog". (See http://www.employees.org/~lonvick/index.shtml for more in about that.) This WG has written rfc3164; the standard about "normal" syslog (protocol), which wasn't described before. And has written (and is) some more standards to secure (and enhance) syslog, like syslog-sign and others. As far as I know, there is no (free or open) implementation of any of these protocol; so it is nice to be the first one! Currently, I have a implementation of syslogd, that "speaks" both rfc3164 syslog and syslog-sign (but only the draft-07 version; which is changed in the draft-09). It is based on FreeBSD code; and I have tested it only on FreeBSD. Below, some idea's about what can be done... Possible you can "port" it to Linux; and make the changes to version 09. Also, some the manpage has to be updated. An other task is, to reimplement the "compression" code. The old FreeBSD version did "compress" repeating (equal) log line, by replacing the lot of copies by a line "last message repeated N time". I had to remove that; due to time constrains. But it needs to come back. I have started (in Obj-C) a tool to verify syslog-sign. You can help there to. If you have other "good" idea's; they are welcome! Note: You can download the (draft) rfc's from the link above (or in the doc dir in SF; (filename has no version number; I use CVS:-) Currently draft07 stored. I will update to 09 shortly). Note: I have given a presenattion about "my implementation", you can download a (PDF) copy at: http://eurobsdcon.org/papers/#mietus (follow link). Last, please add you self to the mailinglist about this project. sys...@li... You can do so at: http://lists.sourceforge.net/lists/listinfo/syslog-sec-misc |