Date: Fri, 1 Oct 2010 15:45:03 +0100 From: krad <kraduk@gmail.com> To: Kevin Wilcox <kevin.wilcox@gmail.com> Cc: Free BSD Questions list <freebsd-questions@freebsd.org> Subject: Re: router / firewall with PF and carp. Message-ID: <AANLkTin18am2JRHE5MVPBx=F1CoSc4dpLXcjaYwqFo2P@mail.gmail.com> In-Reply-To: <AANLkTik_EDBwbWgw-=BJuQcRHqBSJHTD80YSgUF09MqN@mail.gmail.com> References: <20101001001926.6ef8aa93@davenulle.org> <AANLkTinGA6eGB7Tvo0bOLv0aAqbOCoq_JVx-OfAHHdNV@mail.gmail.com> <AANLkTin9ZoGsUhOBwy10Y4CPFcFNFO2P-35JZXH5dER2@mail.gmail.com> <20101001141628.GE26665@catflap.slightlystrange.org> <AANLkTik_EDBwbWgw-=BJuQcRHqBSJHTD80YSgUF09MqN@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1 October 2010 15:34, Kevin Wilcox <kevin.wilcox@gmail.com> wrote: > On 1 October 2010 10:16, Daniel Bye > <freebsd-questions@slightlystrange.org> wrote: > > > On Fri, Oct 01, 2010 at 09:40:56AM -0400, Kevin Wilcox wrote: > > >> Krad, I was under the impression that 'audit' from TrustedBSD is built > >> into FreeBSD. Is there a facility in OpenBSD that is "better" or is > >> there something in 'audit' that is lacking? > > > I think krad is referring to the well-publicised code audit that the > OpenBSD > > project conducts, rather than the TrustedBSD audit framework. As far as I > > know, OpenBSD doesn't have anything comparable, but it's a long time > since I > > looked at it, so I might be typing out of me ear... > > Dan, that makes perfect sense. I'm working up a BSD presentation for > the local LUG next week and the latest compare/contrast I was working > on was SELinux/GrSecurity/Pax versus TrustedBSD; my brain immediately > parsed auditing as an audit trail, not the immense code audit for the > base system. > > Thanks for the reality check!! > > kmw > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > I know what you mean, whenever i have worked with SELINUX policies and the bsd MAC framework, it has fried my brain a little 8)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTin18am2JRHE5MVPBx=F1CoSc4dpLXcjaYwqFo2P>