mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-01-29 21:08:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

sysklogd: do not open any network sockets by default

Browse Source 
The default in sysklogd 2.x is to open listening network sockets,
unlike sysklogd 1.5 where the default was the opposite.

This is contrary to a "secure by default" design, so set up the
init script to pass the -ss option to prevent syslogd from opening
any network sockets. It can be overridden in /etc/default/syslogd.

(From OE-Core rev: 103688fd349338520c147d5bde07429951925141)

Signed-off-by: Diego Santa Cruz <Diego.SantaCruz@spinetix.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Diego Santa Cruz
2021-02-25 17:03:56 +01:00
committed by Richard Purdie
parent 53f118af39
commit 910b09c4bc
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
meta/recipes-extended/sysklogd/files/sysklogd
View File

@@ -22,6 +22,9 @@ binpath_syslogd=/usr/sbin/syslogd
test -x $binpath || exit 0
# run secure by default
SYSLOGD="-ss"
test ! -r /etc/default/syslogd || . /etc/default/syslogd
create_xconsole()