draft-ietf-syslog-transport-udp - PowerPoint PPT Presentation

1 / 5
About This Presentation
Title:

draft-ietf-syslog-transport-udp

Description:

Defines UDP transport for syslog-protocol Internet Draft ... Message forgery possible. Message observation possible. Replay attacks possible ... – PowerPoint PPT presentation

Number of Views:10
Avg rating:3.0/5.0
Slides: 6
Provided by: antonokmia
Learn more at: http://www.employees.org
Category:

less

Transcript and Presenter's Notes

Title: draft-ietf-syslog-transport-udp


1
draft-ietf-syslog-transport-udp
  • Internet Draft 00
  • Anton Okmianskiaokmians_at_cisco.com

2
Overview
  • Standards Track Internet Draft
  • Replaces informational RFC3164
  • Defines UDP transport for syslog-protocol
    Internet Draft
  • Syslog clients and servers MUST support UDP
    transport
  • Defines UDP server port as 514

3
Transport
  • One datagram per syslog message
  • One datagram per syslog message part for
    multi-part syslog messages
  • UDP checksums RECOMMENDED
  • IP fragmentation SHOULD be avoided
  • Recommends syslog payload of no more than 548
    bytes to avoid fragmentation

4
Reliability Considerations
  • Lost datagrams
  • Corrupted datagrams
  • No congestion control
  • No sequenced delivery
  • IP fragmentation increase risk of datagram loss

5
Security Considerations
  • No message authenticity
  • No strong authentication
  • Message forgery possible
  • Message observation possible
  • Replay attacks possible
  • Issues due to lack of reliability
  • No prioritization
  • Denial of service possible
  • Covert channels possible
Write a Comment
User Comments (0)
About PowerShow.com