From owner-p4-projects@FreeBSD.ORG Thu Dec 11 15:12:17 2008 Return-Path: Delivered-To: p4-projects@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 32767) id 6EB1E1065677; Thu, 11 Dec 2008 15:12:17 +0000 (UTC) Delivered-To: perforce@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 283C1106564A for ; Thu, 11 Dec 2008 15:12:17 +0000 (UTC) (envelope-from brueffer@freebsd.org) Received: from repoman.freebsd.org (repoman.freebsd.org [IPv6:2001:4f8:fff6::29]) by mx1.freebsd.org (Postfix) with ESMTP id 156758FC1B for ; Thu, 11 Dec 2008 15:12:17 +0000 (UTC) (envelope-from brueffer@freebsd.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.14.3/8.14.3) with ESMTP id mBBFCGDw034849 for ; Thu, 11 Dec 2008 15:12:16 GMT (envelope-from brueffer@freebsd.org) Received: (from perforce@localhost) by repoman.freebsd.org (8.14.3/8.14.3/Submit) id mBBFCGKB034847 for perforce@freebsd.org; Thu, 11 Dec 2008 15:12:16 GMT (envelope-from brueffer@freebsd.org) Date: Thu, 11 Dec 2008 15:12:16 GMT Message-Id: <200812111512.mBBFCGKB034847@repoman.freebsd.org> X-Authentication-Warning: repoman.freebsd.org: perforce set sender to brueffer@freebsd.org using -f From: Christian Brueffer To: Perforce Change Reviews Cc: Subject: PERFORCE change 154497 for review X-BeenThere: p4-projects@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: p4 projects tree changes List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Dec 2008 15:12:17 -0000 http://perforce.freebsd.org/chv.cgi?CH=154497 Change 154497 by brueffer@brueffer_haakonia on 2008/12/11 15:11:43 Various mdoc and typo fixes. Affected files ... .. //depot/projects/trustedbsd/openbsm/bin/audit/audit.8#13 edit .. //depot/projects/trustedbsd/openbsm/bin/auditd/auditd.8#16 edit Differences ... ==== //depot/projects/trustedbsd/openbsm/bin/audit/audit.8#13 (text+ko) ==== @@ -25,9 +25,9 @@ .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" -.\" $P4: //depot/projects/trustedbsd/openbsm/bin/audit/audit.8#12 $ +.\" $P4: //depot/projects/trustedbsd/openbsm/bin/audit/audit.8#13 $ .\" -.Dd October 2, 2006 +.Dd December 11, 2008 .Dt AUDIT 8 .Os .Sh NAME @@ -44,9 +44,12 @@ .Nm : .Bl -tag -width indent .It Fl i -Initializes and starts auditing. This option is currently for Mac OS X only -and requires auditd to be configured to run under -.Xr Launchd 8 . +Initializes and starts auditing. +This option is currently for Mac OS X only +and requires +.Xr auditd 8 +to be configured to run under +.Xr launchd 8 . .It Fl n Forces the audit system to close the existing audit log file and rotate to a new log file in a location specified in the audit control file. @@ -62,9 +65,10 @@ .Sh NOTES The .Xr auditd 8 -daemon must already be running. Optionally, it can be configured to be started +daemon must already be running. +Optionally, it can be configured to be started on-demand by -.Xr Launchd 8 +.Xr launchd 8 (Mac OS X only). The .Nm ==== //depot/projects/trustedbsd/openbsm/bin/auditd/auditd.8#16 (text+ko) ==== @@ -25,9 +25,9 @@ .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" -.\" $P4: //depot/projects/trustedbsd/openbsm/bin/auditd/auditd.8#15 $ +.\" $P4: //depot/projects/trustedbsd/openbsm/bin/auditd/auditd.8#16 $ .\" -.Dd October 2, 2006 +.Dd December 11, 2008 .Dt AUDITD 8 .Os .Sh NAME @@ -57,7 +57,8 @@ .Xr launchd 8 . .El .Pp -Optionally, the audit review group "audit" may be created. Non-privileged +Optionally, the audit review group "audit" may be created. +Non-privileged users that are members of this group may read the audit trail log files. .Sh NOTE To assure uninterrupted audit support, the @@ -82,9 +83,10 @@ .Nm uses the .Xr asl 3 -API for writing system log messages. Therefore, only the audit administrator +API for writing system log messages. +Therefore, only the audit administrator and members of the audit review group will be able to read the -system log enties. +system log entries. .Sh FILES .Bl -tag -width ".Pa /etc/security" -compact .It Pa /var/audit