Date: Fri, 1 Oct 2010 10:34:15 -0400 From: Kevin Wilcox <kevin.wilcox@gmail.com> To: Free BSD Questions list <freebsd-questions@freebsd.org> Subject: Re: router / firewall with PF and carp. Message-ID: <AANLkTik_EDBwbWgw-=BJuQcRHqBSJHTD80YSgUF09MqN@mail.gmail.com> In-Reply-To: <20101001141628.GE26665@catflap.slightlystrange.org> References: <20101001001926.6ef8aa93@davenulle.org> <AANLkTinGA6eGB7Tvo0bOLv0aAqbOCoq_JVx-OfAHHdNV@mail.gmail.com> <AANLkTin9ZoGsUhOBwy10Y4CPFcFNFO2P-35JZXH5dER2@mail.gmail.com> <20101001141628.GE26665@catflap.slightlystrange.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1 October 2010 10:16, Daniel Bye <freebsd-questions@slightlystrange.org> wrote: > On Fri, Oct 01, 2010 at 09:40:56AM -0400, Kevin Wilcox wrote: >> Krad, I was under the impression that 'audit' from TrustedBSD is built >> into FreeBSD. Is there a facility in OpenBSD that is "better" or is >> there something in 'audit' that is lacking? > I think krad is referring to the well-publicised code audit that the OpenBSD > project conducts, rather than the TrustedBSD audit framework. As far as I > know, OpenBSD doesn't have anything comparable, but it's a long time since I > looked at it, so I might be typing out of me ear... Dan, that makes perfect sense. I'm working up a BSD presentation for the local LUG next week and the latest compare/contrast I was working on was SELinux/GrSecurity/Pax versus TrustedBSD; my brain immediately parsed auditing as an audit trail, not the immense code audit for the base system. Thanks for the reality check!! kmw
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTik_EDBwbWgw-=BJuQcRHqBSJHTD80YSgUF09MqN>