klogd + dd – why?

[Jeremy R.]

Excuse me; can anyone explain why it's necessary to send kernel log  
messages through dd, rather than letting klogd pick them up directly?  
Debian doesn't do it that way.

Other than "it lets us run it as user klogd", which isn't a reason in  
and of itself.

Why is klogd a particular security issue? What possible benefit is  
there to running a dd process as root instead of simply running klogd  
as root, or having klogd start as root and then drop privileges?

Cheers.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/ubuntu-devel/attachments/20090928/6253b0de/attachment-0002.htm