From owner-trustedbsd-cvs@FreeBSD.ORG Mon Sep 18 10:47:10 2006 Return-Path: X-Original-To: trustedbsd-cvs@freebsd.org Delivered-To: trustedbsd-cvs@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5403D16A403 for ; Mon, 18 Sep 2006 10:47:10 +0000 (UTC) (envelope-from owner-perforce@freebsd.org) Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6768B43D79 for ; Mon, 18 Sep 2006 10:46:56 +0000 (GMT) (envelope-from owner-perforce@freebsd.org) Received: from mx2.freebsd.org (mx2.freebsd.org [216.136.204.119]) by cyrus.watson.org (Postfix) with ESMTP id 3E3FE46D0E for ; Mon, 18 Sep 2006 06:46:55 -0400 (EDT) Received: from hub.freebsd.org (hub.freebsd.org [216.136.204.18]) by mx2.freebsd.org (Postfix) with ESMTP id 61A1A58EB1; Mon, 18 Sep 2006 10:43:37 +0000 (GMT) (envelope-from owner-perforce@freebsd.org) Received: by hub.freebsd.org (Postfix, from userid 32767) id 59B7616A417; Mon, 18 Sep 2006 10:43:37 +0000 (UTC) X-Original-To: perforce@freebsd.org Delivered-To: perforce@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 275AE16A412 for ; Mon, 18 Sep 2006 10:43:37 +0000 (UTC) (envelope-from bb+lists.freebsd.perforce@cyrus.watson.org) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id E290F43D5D for ; Mon, 18 Sep 2006 10:43:36 +0000 (GMT) (envelope-from bb+lists.freebsd.perforce@cyrus.watson.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.13.6/8.13.6) with ESMTP id k8IAhan1077093 for ; Mon, 18 Sep 2006 10:43:36 GMT (envelope-from bb+lists.freebsd.perforce@cyrus.watson.org) Received: (from perforce@localhost) by repoman.freebsd.org (8.13.6/8.13.4/Submit) id k8IAhaUe077090 for perforce@freebsd.org; Mon, 18 Sep 2006 10:43:36 GMT (envelope-from bb+lists.freebsd.perforce@cyrus.watson.org) Date: Mon, 18 Sep 2006 10:43:36 GMT Message-Id: <200609181043.k8IAhaUe077090@repoman.freebsd.org> X-Authentication-Warning: repoman.freebsd.org: perforce set sender to bb+lists.freebsd.perforce@cyrus.watson.org using -f From: Robert Watson To: Perforce Change Reviews Cc: Subject: PERFORCE change 106287 for review X-BeenThere: trustedbsd-cvs@FreeBSD.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: TrustedBSD CVS and Perforce commit message list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Sep 2006 10:47:10 -0000 http://perforce.freebsd.org/chv.cgi?CH=106287 Change 106287 by rwatson@rwatson_zoo on 2006/09/18 10:42:48 Update HISTORY for things done recently towards OpenBSM 1.0 alpha 11. Affected files ... .. //depot/projects/trustedbsd/openbsm/HISTORY#28 edit Differences ... ==== //depot/projects/trustedbsd/openbsm/HISTORY#28 (text+ko) ==== @@ -1,5 +1,23 @@ OpenBSM 1.0 alpha 11 +- Reclassify certain read/write operations as having no class rather than the + fr/fw class; our default classes audit intent (open) not operations (read, + write). + +- Introduce AUE_SYSCTL_WRITE event so that BSD/Darwin systems can audit reads + and writes of sysctls as separate events. Add additional kernel + environment and jail events for FreeBSD. + +- Break AUDIT_TRIGGER_OPEN_NEW into two events, AUDIT_TRIGGER_ROTATE_USER + (issued by the user audit(8) tool) and AUDIT_TRIGGER_ROTATE_KERNEL (issued + by the kernel audit implementation) so that they can be distinguished. + +- Disable rate limiting of rotate requests; as the kernel doesn't retransmit + a dropped request, the log file will otherwise grow indefinitely if the + trigger is dropped. + +- Improve auditd debugging output. + OpenBSM 1.0 alpha 10 - auditd now generates complete audit records for its events, as required for @@ -211,4 +229,4 @@ to support reloading of kernel event table. - Allow comments in /etc/security configuration files. -$P4: //depot/projects/trustedbsd/openbsm/HISTORY#27 $ +$P4: //depot/projects/trustedbsd/openbsm/HISTORY#28 $