Re: OpenBSM: does somebody work on it?
--Apple-Mail-9-330722501
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
charset=us-ascii
On 29 juin 2011, at 12:59, Lev Serebryakov wrote:
> auditreduce doesn't filter events by date (-b/-a/-d options with any
> arguments produces empty output), it doesn't merge files properly and
> doesn't pick up files automagically, as Solaris' one does. It doesn't
> have -C/-M/-O functionality of Solaris' one, too. So, proper merging
> of audit trial files seems to be impossible :(
>=20
> I could try to fix & extend auditreduce(1), but does somebdy but me
> need it?
>=20
> Does somebody use audit on FreeBSD on production systems?
I do, almost (I've not finished my settup, but I'm auditing a production =
server).
May be you'll find this interesting: =
http://forums.freebsd.org/showthread.php?t=3D23716#9
patpro=
--Apple-Mail-9-330722501--
討論串 (同標題文章)
完整討論串 (本文為第 2 之 8 篇):