From owner-p4-projects@FreeBSD.ORG  Thu Jul 31 10:53:03 2008
Return-Path: <owner-p4-projects@FreeBSD.ORG>
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id 3B5151065680; Thu, 31 Jul 2008 10:53:03 +0000 (UTC)
Delivered-To: perforce@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id DAE771065672
	for <perforce@freebsd.org>; Thu, 31 Jul 2008 10:53:02 +0000 (UTC)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id CDB278FC18
	for <perforce@freebsd.org>; Thu, 31 Jul 2008 10:53:02 +0000 (UTC)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.2/8.14.2) with ESMTP id m6VAr2Rf056971
	for <perforce@freebsd.org>; Thu, 31 Jul 2008 10:53:02 GMT
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.14.2/8.14.1/Submit) id m6VAr2SP056969
	for perforce@freebsd.org; Thu, 31 Jul 2008 10:53:02 GMT
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Date: Thu, 31 Jul 2008 10:53:02 GMT
Message-Id: <200807311053.m6VAr2SP056969@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to
	bb+lists.freebsd.perforce@cyrus.watson.org using -f
From: Robert Watson <rwatson@FreeBSD.org>
To: Perforce Change Reviews <perforce@freebsd.org>
Cc: 
Subject: PERFORCE change 146306 for review
X-BeenThere: p4-projects@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: p4 projects tree changes <p4-projects.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/p4-projects>
List-Post: <mailto:p4-projects@freebsd.org>
List-Help: <mailto:p4-projects-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Jul 2008 10:53:03 -0000

http://perforce.freebsd.org/chv.cgi?CH=146306

Change 146306 by rwatson@rwatson_fledge on 2008/07/31 10:52:59

	Update and cleanup of OpenBSM information page.

Affected files ...

.. //depot/projects/trustedbsd/www/openbsm.page#25 edit

Differences ...

==== //depot/projects/trustedbsd/www/openbsm.page#25 (text+ko) ====

@@ -29,7 +29,7 @@
 
   <cvs:keywords xmlns:cvs="http://www.FreeBSD.org/XML/CVS" version="1.0">
     <cvs:keyword name="freebsd">
-      $P4: //depot/projects/trustedbsd/www/openbsm.page#24 $
+      $P4: //depot/projects/trustedbsd/www/openbsm.page#25 $
     </cvs:keyword>
   </cvs:keywords>
 
@@ -46,29 +46,38 @@
       </p>
 
       <p>OpenBSM is a portable, open source implementation of Sun's Basic
-	Security Module (BSM) Audit API and file format.
-	BSM, the de facto industry standard for Audit, describes a set of
+	Security Module (BSM) security audit API and file format.
+	BSM, the de facto industry standard for audit, describes a set of
 	system call and library interfaces for managing audit records, as
 	well as a token stream file format that permits extensible and
 	generalized audit trail processing.
-	OpenBSM extends the BSM API and file format in a number of ways to
+	Records may describe both kernel events, such as system calls, as
+	well as application events, such as login, password changes,
+	etc.</p>
+
+      <p>OpenBSM extends the BSM API and file format in a number of ways to
 	support features present in the Mac OS X and FreeBSD operating
 	systems, such as Mach task interfaces, sendfile(), and Linux system
-	calls present in the FreeBSD Linux emulation layer.
-	OpenBSM is known to build on FreeBSD, Mac OS X, and Linux; some
-	components, such as the audit daemon, require up-to-date kernel
-	audit parts from the FreeBSD kernel audit implementation, but the
-	basic library and audit trail tools run on all three platforms.</p>
+	calls present in the FreeBSD Linux emulation layer, as well as
+	focusing on portability through an endian-independent version of the
+	trail format.</p>
+
+      <p>The OpenBSM distribution provides system include files, the libbsm
+	library, command-line tools such as praudit and auditreduce, sample
+	/etc configuration files, and an audit daemon for use on systems with
+	kernel support.
+	It is appropriate for use stand-alone in processing trails generated
+	by BSM-enabled systems, as well as for use as the foundation of OS
+	audit implementations requiring libraries, command-line tools,
+	etc.</p>
 
-      <p>The OpenBSM distribution includes system include files appropriate
-	for inclusion in an operating system implementation of Audit, libbsm,
-	an implementation of the BSM library interfaces for generating,
-	parsing, and managing audit records, auditreduce and praudit, audit
-	reduction and printing tools, API documentation, and sample /etc
-	configuration files.
-	Works in progress include extensions to the libbsm API to support
-	easier audit trail analysis, including a pattern matching
-	library.</p>
+      <p>OpenBSM is built and tested on several versions of FreeBSD, Mac OS
+	X, and Linux; some components, such as the audit daemon, require
+	kernel audit support (present in newer versions of FreeBSD and Mac
+	OS X), but the basic library and audit trail tools run on all three
+	platforms regardless of OS kernel support.
+	Written in portable C and built using autoconf/automake, it is easy
+	to adapt OpenBSM for use on new platforms.</p>
 
     </html>
   </section>