Unix domain socket message size

I have been trying to increase the maximum allowed size for a message when using unix domain sockets without any success... Whenever I send anything larger than 2048, it fails with EMSGSIZE. I looked at multiple sysctls and no one seems to be related to unix domain sockets. From getsockopt the max

Res: Unix domain socket message size

>If I add this to your main() I can send larger messages: > > int len; > socklen_t optlen = sizeof(len); > > ... >len = 4096; > if (setsockopt(c_socket, SOL_SOCKET, SO_SNDBUF, &len, optlen) == -1) > err(1, "setsockopt"); >if (getsockopt(c_socket, SOL_SOCKET, SO_SNDBUF, &len, &optl

Re: SSH brute force attacks no longer being caught by PF rule

Please, don't use grok for that! From what I saw it is vulnerable to very simple log injection attacks (you need much more string regexes): http://www.ossec.net/en/attacking-loganalysis.html Be very careful when parsing logs for automated remediation... Thanks, -- Daniel B. Cid dcid ( at ) oss

Re: IDS solution

You didn't mention if you are only looking for NIDS, so I will suggest the ossec hids to you. I have been using it very sucessfully and it has been much more useful the any NIDS that I have ever used (just to be fair, I'm the developer of this project, but I know some ISPs and companies that use it