From owner-freebsd-questions@FreeBSD.ORG  Fri Apr  8 19:06:32 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B3ADC16A4CE
	for <freebsd-questions@freebsd.org>;
	Fri,  8 Apr 2005 19:06:32 +0000 (GMT)
Received: from ss.eunet.cz (ss.eunet.cz [193.85.228.13])
	by mx1.FreeBSD.org (Postfix) with ESMTP id AA46043D45
	for <freebsd-questions@freebsd.org>;
	Fri,  8 Apr 2005 19:06:31 +0000 (GMT)
	(envelope-from mime@traveller.cz)
Received: from localhost.i.cz (ss.eunet.cz [193.85.228.13])
	by ss.eunet.cz (8.13.1/8.13.1) with ESMTP id j38J6Imi026252;
	Fri, 8 Apr 2005 21:06:18 +0200 (CEST)
	(envelope-from mime@traveller.cz)
From: Michal Mertl <mime@traveller.cz>
To: markzero <mark@darklogik.org>
In-Reply-To: <20050408184457.GA7173@logik.ath.cx>
References: <0C6023A0-A83B-11D9-B765-000A956EB07E@partners.org>
	<20050408144104.GA75094@orion.daedalusnetworks.priv>
	<AD66CFA0-A83C-11D9-B765-000A956EB07E@partners.org>
	<20050408184457.GA7173@logik.ath.cx>
Content-Type: text/plain; charset=ISO-8859-2
Date: Fri, 08 Apr 2005 21:06:17 +0200
Message-Id: <1112987177.627.10.camel@genius2.i.cz>
Mime-Version: 1.0
X-Mailer: Evolution 2.2.1.1 FreeBSD GNOME Team Port 
Content-Transfer-Encoding: 8bit
cc: freebsd-questions@freebsd.org
Subject: Re: Any way to log all process launches?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Apr 2005 19:06:32 -0000

markzero píše v pá 08. 04. 2005 v 19:44 +0100:
> > If you need more detailed information some patches at garage.freebsd.pl
> > might be interesting - especially lrexec. It may be a bit outdated but
> > it provides you with the information standard utilities don't.
> > 
> > Michal
> 
> Thanks for the interesting link. How much of this is committed to the
> tree (perhaps -CURRENT)? Quite a few of those patches seem to provide
> zero-cost security (like the setgid crontab) and I for one would
> certainly like to see them in FreeBSD in the future...

Not much. His GEOM modules, jailfsstat and kern.msgbuf in some form or
other as far as I can tell.

The author of the patches became FreeBSD committer so you'd better ask
him. Lot's of people would love to see some more it the tree. I like and
would use mijail and privipc for sure. There were some discussions about
the patches on the mailing lists in the past. E.g. everyone likes the
idea of privipc but it seems to be almost impossible to do really
correctly. Try to ask pjd@freebsd.org.

Michal