>>>>> "Rainer" == Rainer Gerhards <[EMAIL PROTECTED]> writes:
>> I wonder why an operator would choose to use a TLS transport >> without authentication, rather than simply using a non-secure >> transport. Rainer> To prevent casual observation. In my experience, this is Rainer> the primary driving force behing syslog/ssl Rainer> deployments. And, yes, I agree we should educate operators Rainer> to use authentication, too. Rainer> Rainer To be more specific, passive attackers cannot influence the integrity or confidentiality of messages. In addition, active attackers who do not attack existing connections are unaware of the contents of syslog messages that are sent. _______________________________________________ Syslog mailing list Syslog@lists.ietf.org https://www1.ietf.org/mailman/listinfo/syslog