Date: Mon, 15 Oct 2001 23:15:48 +0200 (CEST) From: Krzysztof Zaraska <kzaraska@student.uci.agh.edu.pl> To: "Andrew R. Reiter" <arr@watson.org> Cc: security@FreeBSD.ORG Subject: Re: Recent major changes in the NetBSD audit system Message-ID: <Pine.BSF.4.21.0110152313090.528-100000@lhotse.zaraska.dhs.org> In-Reply-To: <Pine.NEB.3.96L.1011015101433.95862A-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 15 Oct 2001, Andrew R. Reiter wrote: > I see the importance of what they are doing, but I also feel that they are > going the tripwire route -- which is flawed since it relies on trusting > hte kernel for valid information. Could you explain this a little more in detail? If tripwire-like solutions are flawed, how should it work then? Thanks in advance, Krzysztof To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0110152313090.528-100000>