Date: Mon, 2 Mar 2009 13:29:18 +0000 (UTC) From: Robert Watson <rwatson@FreeBSD.org> To: cvs-src-old@freebsd.org Subject: cvs commit: src/contrib/openbsm CREDITS NEWS README VERSION configure configure.ac src/contrib/openbsm/bin/audit audit.8 audit.c src/contrib/openbsm/bin/auditd audit_warn.c auditd.c auditd.h src/contrib/openbsm/bsm auditd_lib.h libbsm.h ... Message-ID: <200903031719.n23HJKi6090967@repoman.freebsd.org>
index | next in thread | raw e-mail
rwatson 2009-03-02 13:29:18 UTC
FreeBSD src repository
Modified files:
contrib/openbsm CREDITS NEWS README VERSION configure
configure.ac
contrib/openbsm/bin/audit audit.8 audit.c
contrib/openbsm/bin/auditd audit_warn.c auditd.c auditd.h
contrib/openbsm/bsm auditd_lib.h libbsm.h
contrib/openbsm/etc audit_control audit_event
contrib/openbsm/libauditd auditd_lib.c
contrib/openbsm/libbsm au_control.3 au_domain.3 au_errno.3
bsm_control.c bsm_errno.c bsm_io.c
bsm_token.c
contrib/openbsm/man audit_control.5 auditon.2
contrib/openbsm/sys/bsm audit.h audit_kevents.h
contrib/openbsm/tools audump.c
sys/bsm audit.h audit_kevents.h
sys/security/audit audit_bsm_errno.c audit_bsm_token.c
Log:
SVN rev 189279 on 2009-03-02 13:29:18Z by rwatson
Merge OpenBSM 1.1 beta 1 from OpenBSM vendor branch to head, both
contrib/openbsm (svn merge) and src/sys/{bsm,security/audit} (manual
merge).
OpenBSM history for imported revision below for reference.
MFC after: 1 month
Sponsored by: Apple, Inc.
Obtained from: TrustedBSD Project
OpenBSM 1.1 beta 1
- The filesz parameter in audit_control(5) now accepts suffixes: 'B' for
Bytes, 'K' for Kilobytes, 'M' for Megabytes, and 'G' for Gigabytes.
For legacy support no suffix defaults to bytes.
- Audit trail log expiration support added. It is configured in
audit_control(5) with the expire-after parameter. If there is no
expire-after parameter in audit_control(5), the default, then the audit
trail files are not expired and removed. See audit_control(5) for
more information.
- Change defaults in audit_control: warn at 5% rather than 20% free for audit
partitions, rotate automatically at 2mb, and set the default policy to
cnt,argv rather than cnt so that execve(2) arguments are captured if
AUE_EXECVE events are audited. These may provide more usable defaults for
many users.
- Use au_domain_to_bsm(3) and au_socket_type_to_bsm(3) to convert
au_to_socket_ex(3) arguments to BSM format.
- Fix error encoding AUT_IPC_PERM tokens.
Revision Changes Path
1.2 +1 -0 src/contrib/openbsm/CREDITS
1.4 +20 -1 src/contrib/openbsm/NEWS
1.4 +2 -2 src/contrib/openbsm/README
1.5 +1 -1 src/contrib/openbsm/VERSION
1.4 +10 -4 src/contrib/openbsm/bin/audit/audit.8
1.4 +12 -5 src/contrib/openbsm/bin/audit/audit.c
1.4 +17 -2 src/contrib/openbsm/bin/auditd/audit_warn.c
1.5 +33 -8 src/contrib/openbsm/bin/auditd/auditd.c
1.4 +4 -2 src/contrib/openbsm/bin/auditd/auditd.h
1.3 +3 -1 src/contrib/openbsm/bsm/auditd_lib.h
1.5 +10 -8 src/contrib/openbsm/bsm/libbsm.h
1.5 +10 -10 src/contrib/openbsm/configure
1.5 +2 -2 src/contrib/openbsm/configure.ac
1.5 +4 -4 src/contrib/openbsm/etc/audit_control
1.12 +4 -2 src/contrib/openbsm/etc/audit_event
1.3 +341 -28 src/contrib/openbsm/libauditd/auditd_lib.c
1.2 +123 -26 src/contrib/openbsm/libbsm/au_control.3
1.2 +2 -1 src/contrib/openbsm/libbsm/au_domain.3
1.2 +3 -2 src/contrib/openbsm/libbsm/au_errno.3
1.4 +258 -162 src/contrib/openbsm/libbsm/bsm_control.c
1.3 +2 -2 src/contrib/openbsm/libbsm/bsm_errno.c
1.5 +2 -2 src/contrib/openbsm/libbsm/bsm_io.c
1.5 +9 -8 src/contrib/openbsm/libbsm/bsm_token.c
1.3 +69 -9 src/contrib/openbsm/man/audit_control.5
1.3 +9 -2 src/contrib/openbsm/man/auditon.2
1.4 +4 -3 src/contrib/openbsm/sys/bsm/audit.h
1.3 +6 -16 src/contrib/openbsm/sys/bsm/audit_kevents.h
1.2 +42 -4 src/contrib/openbsm/tools/audump.c
1.15 +4 -3 src/sys/bsm/audit.h
1.19 +6 -16 src/sys/bsm/audit_kevents.h
1.4 +2 -2 src/sys/security/audit/audit_bsm_errno.c
1.24 +8 -7 src/sys/security/audit/audit_bsm_token.c
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200903031719.n23HJKi6090967>