Date: Sat, 18 Sep 1999 01:06:30 -0600 From: Wes Peters <wes@softweyr.com> To: Warner Losh <imp@village.org> Cc: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net>, "Jordan K. Hubbard" <jkh@zippy.cdrom.com>, Brett Glass <brett@lariat.org>, security@FreeBSD.ORG Subject: Re: BPF on in 3.3-RC GENERIC kernel Message-ID: <37E339F6.F5C889D6@softweyr.com> References: <199909180633.XAA50642@gndrsh.dnsmgr.net> <199909180638.AAA00735@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Warner Losh wrote:
>
> In message <199909180633.XAA50642@gndrsh.dnsmgr.net> "Rodney W. Grimes" writes:
> : I've had the fortanate experience of not having to work on any modern
> : Digital OS's (last was VMS 5.0 and Ultrix 3.x). I wonder if /dev/audit
> : is lifted right out of VMS's SYS$AUDIT:.
>
> In conversations that I had with folks from inside digital over the
> years, I've been told that this was one of the things written in BLISS
> that was ported to Ultrix. However, I am suspicious about this
> assertion give what I now know about the internals of both VMS and BSD
> these days.
As Terry used to say, "BLISS is ignorance."
A well-defined and well-architected syscall auditing mechanism would be a
great security addition, and right up the alley of what I'm looking for.
--
"Where am I, and what am I doing in this handbasket?"
Wes Peters Softweyr LLC
http://softweyr.com/ wes@softweyr.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?37E339F6.F5C889D6>