DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 17th January 2010
joostvgh joostvgh is offline
Port Guard
 
Join Date: Jan 2010
Posts: 38
Thanked 0 Times in 0 Posts
Default dnsspoof logging issue

i am trying to output the dnsspoof to a file rather than to console. however this does not work

my command: /usr/local/sbin/dnsspoof -i em1 -f /usr/local/lib/dnsspoof.hosts & > /var/log/dnsspoof

the file is created but nothing is logged to it..
Reply With Quote
  #2   (View Single Post)  
Old 17th January 2010
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,154
Thanked 182 Times in 149 Posts
Default

Split from http://www.daemonforums.org/showthread.php?t=4193

Reference: The dnsspoof program was proposed in http://www.daemonforums.org/showthre...4193#post29392

Deserves it's own thread
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #3   (View Single Post)  
Old 17th January 2010
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,154
Thanked 182 Times in 149 Posts
Default

Quote:
Originally Posted by joostvgh View Post
i am trying to output the dnsspoof to a file rather than to console. however this does not work

my command: /usr/local/sbin/dnsspoof -i em1 -f /usr/local/lib/dnsspoof.hosts & > /var/log/dnsspoof

the file is created but nothing is logged to it..
Background the process after the redirection:
Code:
/usr/local/sbin/dnsspoof -i em1 -f /usr/local/lib/dnsspoof.hosts > /var/log/dnsspoof &
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #4   (View Single Post)  
Old 18th January 2010
joostvgh joostvgh is offline
Port Guard
 
Join Date: Jan 2010
Posts: 38
Thanked 0 Times in 0 Posts
Default

ok so i did this and it used to work. however currently its printing to the console.

secondly I want to start it at boot time so I added this to /etc/rc.local:

if [ -x /usr/local/sbin/dnsspoof ]; then
echo -n ' dnsspoof -i rl0 -f /usr/local/lib/dnsspoof.hosts > /var/log dnsspoof.log &'; /usr/local/sbin/dnsspoof
fi

this starts dnsspoof @ boottime but it is not backgrounded; in other words, the boot stops untill i press ctrl+c to break dnsspoof.

any tips?

Last edited by joostvgh; 18th January 2010 at 11:52 PM.
Reply With Quote
  #5   (View Single Post)  
Old 18th January 2010
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,154
Thanked 182 Times in 149 Posts
Default

You are only echo'ing to standard output' dnsspoof -i rl0 -f /usr/local/lib/dnsspoof.hosts > /var/log dnsspoof.log &' and not running it.

The ; usr/local/sbin/dnsspoof part makes it run without logging.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #6   (View Single Post)  
Old 19th January 2010
joostvgh joostvgh is offline
Port Guard
 
Join Date: Jan 2010
Posts: 38
Thanked 0 Times in 0 Posts
Default

that was retarded thx!
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
sshd logging - can we get the ssh command? Mantazz FreeBSD Security 17 23rd May 2009 08:34 AM
pflog not logging. bsdnewbie999 OpenBSD General 9 13th March 2009 11:19 PM
Suggestions for Web Traffic Logging? Bruco FreeBSD Ports and Packages 16 18th September 2008 10:54 PM
Network + aMule Logging Problems disappearedng FreeBSD General 0 28th August 2008 09:22 PM
spamd logging question roundkat OpenBSD General 10 11th June 2008 01:27 PM


All times are GMT. The time now is 03:48 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick