Re: Axel Beckert > > LOGFETCHOPTS="--noexec" > > > > instead. > > Hrm. The Debian package for sure will switch that option if upstream > does. > > I'm though currently a bit reluctant to apply this patch and deviate > from upstream's defaults (even more) since the default settings with > IP addresses are less prone to that attack as if the admin uses DNS > names instead of the recommended use of IP addresses for the server. > Tagging as "upstream" for now. > > JFTR: I use that feature in some places and I don't know how widely it > is used by others. I though suspect it is indeed used rather rarely. > The common use-case seems to be if the syslog server adds a date > extension already upon file creation so that logrotate becomes > unnecessary. AFAIK none of Debian's syslog servers does that by > default, though.
I guess most installations don't need the feature, so we could indeed disable it by default, and put a note into README.Debian (+ NEWS) that people need to actively enable it. Christoph
