> > when you look at the wish that some users > > express for encyption, namely both are a one way flow over > a datagram transport > > with some application client out there somewhere:-) And as > I said, these issues > > have been mulled over by isms and netconf and, a year or so > on, there are no > > obvious solutions. TLS may allow you to use off the shelf > modules to achieve a > > quick code package but, and SNMPv3 is the case study here, > the code package is > > not enough, the system must be sufficiently easy to > implement if we are going to > > see it used. > > _It is_ being used. Just google around searching for > "syslog-ng stunnel" > I've just tried and found 133000 hits. You can even read step-by-step > articles how to set this up on sun.com: > > http://www.sun.com/bigadmin/features/articles/syslog_ng.html > > (Stunnel + syslog-ng is a hack, I know that myself.)
If you google for just syslog + stunnel http://www.google.com/search?q=syslog+stunnel&hl=en&lr=&safe=off&start=0 &sa=N you'll find 212,000 results - and many of them seem to be quite related to what we discuss. tls protected syslog is something that is widely used. Rainer _______________________________________________ Syslog mailing list Syslog@lists.ietf.org https://www1.ietf.org/mailman/listinfo/syslog