Thread: KUAL Firewall with BBB filter
View Single Post
Old 02-17-2013, 06:41 PM   #23
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Quote:
Originally Posted by baf View Post
For me simple LOG target is enough
I used to feed PSAD with ULOG target, back when I was on that project.

Now I want the entire packet to add specific rules for using parts of the Amazon network services while blocking others.

I.E: For the 'developer rule-set'.

For other uses, the LOG target is probably enough, will just have to do something about the place that syslog-ng is writing to (and where its configure file is at).

A neat challenge, what with the KUAL objective of never touching system image files.
Will probably end up with over-mounting that file or directory with something, maybe a tmpfs something. (then everything goes away on re-boot)
Last edited by knc1; 02-17-2013 at 06:44 PM.
knc1 is offline   Reply With Quote