From owner-freebsd-security  Mon May 31 10:37:47 1999
Delivered-To: freebsd-security@freebsd.org
Received: from narcissus.net (narcissus.net [209.73.230.146])
	by hub.freebsd.org (Postfix) with ESMTP id 5788515691
	for <freebsd-security@FreeBSD.ORG>; Mon, 31 May 1999 10:37:37 -0700 (PDT)
	(envelope-from ben@narcissus.net)
Received: by narcissus.net (Postfix, from userid 1000)
	id ED630194; Mon, 31 May 1999 13:28:23 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1])
	by narcissus.net (Postfix) with SMTP
	id E0AD318B; Mon, 31 May 1999 13:28:23 -0400 (EDT)
Date: Mon, 31 May 1999 13:28:23 -0400 (EDT)
From: Snob Art Genre <ben@narcissus.net>
To: "Ilmar S. Habibulin" <ilmar@ints.ru>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: auditors
In-Reply-To: <Pine.BSF.4.05.9905311739230.26300-100000@ws-ilmar.ints.ru>
Message-ID: <Pine.BSF.3.96.990531132729.15609A-100000@narcissus.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Mon, 31 May 1999, Ilmar S. Habibulin wrote:

> On Mon, 31 May 1999, Eivind Eklund wrote:
> 
> > The auditing project has been dead/sleeping for a *long* while.  If it
> > should be revived, the first thing to do would be to merge over the
> > OpenBSD fixes, and then have somebody actually *lead* the auditing
> > project.
> 
> And what about posix auditing? Robert Watson made posix.1e audit
> implementation for freebsd. Why do not use his work? 

Different kind of auditing.  The first is people vetting code for
security flaws, the second is logging of system events.


 Ben

@narcissus.net -- finally



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message