#
243752 |
|
01-Dec-2012 |
rwatson |
Merge a number of changes required to hook up OpenBSM 1.2-alpha2's auditdistd (distributed audit daemon) to the build:
- Manual cross references - Makefile for auditdistd - rc.d script, rc.conf entrie - New group and user for auditdistd; associated aliases, etc.
The audit trail distribution daemon provides reliable, cryptographically protected (and sandboxed) delivery of audit tails from live clients to audit server hosts in order to both allow centralised analysis, and improve resilience in the event of client compromises: clients are not permitted to change trail contents after submission.
Submitted by: pjd Sponsored by: The FreeBSD Foundation (auditdistd)
|
#
193157 |
|
31-May-2009 |
rwatson |
Upgrade audit(4) from experimental to production status for FreeBSD 8.0. While there remain some incomplete aspects of the implementation (such as incomplete auditing of some system calls), the implementation has been burned in for a few years, as well as in GENERIC for a few years.
Obtained from: TrustedBSD Project
|
#
159273 |
|
05-Jun-2006 |
rwatson |
Break out description of the audit pipe facility from audit.4 into a new man page, auditpipe.4, which describes the behavior of audit pipes, the ioctls, preselection, etc.
Obtained from: TrustedBSD Project
|
#
155392 |
|
06-Feb-2006 |
rwatson |
Add information on audit pipe special devices, which allow user processes to "tee" the BSM record stream for the purposes of live monitoring, intrusion detection, etc. Support for audit pipes will be committed in the near future.
Obtained from: TrustedBSD Project
|
#
155214 |
|
02-Feb-2006 |
rwatson |
Add audit.4 man page, providing basic documentation for configuring the kernel audit facility, warnings about the experimental nature of this implementation, and pointers at a large number of other audit related man pages.
Obtained from: TrustedBSD Project
|