Date: Tue, 16 Aug 2016 00:28:07 +0200 From: Mateusz Piotrowski <0mp@FreeBSD.org> To: soc-status@FreeBSD.org Subject: Week 12 / Non-BSM to BSM Conversion Tools Message-ID: <6734CD7D-FD67-4724-8B30-42453F871809@FreeBSD.org>
index | next in thread | raw e-mail
Hello, During the last week I finished implementing the minimal conversion of the SYSCALL and EXECVE type Linux Audit records. Moreover, I added a very basic version of au_to_attr(3) to the userland, so that it is possible to create an attribute token outside of the kernel. My current implementation might not be satisfying in the long run so I emailed the FreeBSD and TrustedBSD mailing lists for advice and opinion. During the last week I'll try to extend auditdistd with the ability to receive Linux Audit log trails over the network. The lastest code is available here: https://github.com/0mp/freebsd/pull/9 Cheers! -Mateusz [wiki]: https://wiki.freebsd.org/SummerOfCode2016/NonBSMtoBSMConversionToolshelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6734CD7D-FD67-4724-8B30-42453F871809>