@(#) BLURB 1.3 91/05/20 13:28:10

This package provides a couple of tiny programs that log all requests
to connection-oriented tcp/ip services (examples: FINGER, SYSTAT, FTP,
TELNET, RLOGIN, RSH, EXEC), with optional access control on the basis
of host (or domain) names, internet addresses (or network numbers) and
daemon process names.

The programs are nothing but small front ends. By default, they just
log the remote host name and then invoke the real daemon. The programs
should not require any changes to existing software or configuration
files.

Connections are reported through the syslog(3) facility. Each record
contains a time stamp, the remote host name and the name of the service
requested. Such information can be useful to detect break-in attempts
or other undesirable activities, especially when logfile information
from several hosts is merged.

The optional access-control facility may be useful when, for whatever
reason, it is not possible to handle access control at a more suitable
level (such as an internet router).

Enhancements over the previous release are: protection against rlogin
and rsh attacks through compromised domain name servers, optional
netgroup support for systems with NIS (formerly YP), and an extension
of the wild card patterns supported by the access control files.

	Wietse Venema (wietse@wzv.win.tue.nl),
	Eindhoven University of Technology,
	The Netherlands.
