PERFORCE change 146306 for review
Robert Watson
rwatson at FreeBSD.org
Thu Jul 31 10:53:03 UTC 2008
http://perforce.freebsd.org/chv.cgi?CH=146306
Change 146306 by rwatson at rwatson_fledge on 2008/07/31 10:52:59
Update and cleanup of OpenBSM information page.
Affected files ...
.. //depot/projects/trustedbsd/www/openbsm.page#25 edit
Differences ...
==== //depot/projects/trustedbsd/www/openbsm.page#25 (text+ko) ====
@@ -29,7 +29,7 @@
<cvs:keywords xmlns:cvs="http://www.FreeBSD.org/XML/CVS" version="1.0">
<cvs:keyword name="freebsd">
- $P4: //depot/projects/trustedbsd/www/openbsm.page#24 $
+ $P4: //depot/projects/trustedbsd/www/openbsm.page#25 $
</cvs:keyword>
</cvs:keywords>
@@ -46,29 +46,38 @@
</p>
<p>OpenBSM is a portable, open source implementation of Sun's Basic
- Security Module (BSM) Audit API and file format.
- BSM, the de facto industry standard for Audit, describes a set of
+ Security Module (BSM) security audit API and file format.
+ BSM, the de facto industry standard for audit, describes a set of
system call and library interfaces for managing audit records, as
well as a token stream file format that permits extensible and
generalized audit trail processing.
- OpenBSM extends the BSM API and file format in a number of ways to
+ Records may describe both kernel events, such as system calls, as
+ well as application events, such as login, password changes,
+ etc.</p>
+
+ <p>OpenBSM extends the BSM API and file format in a number of ways to
support features present in the Mac OS X and FreeBSD operating
systems, such as Mach task interfaces, sendfile(), and Linux system
- calls present in the FreeBSD Linux emulation layer.
- OpenBSM is known to build on FreeBSD, Mac OS X, and Linux; some
- components, such as the audit daemon, require up-to-date kernel
- audit parts from the FreeBSD kernel audit implementation, but the
- basic library and audit trail tools run on all three platforms.</p>
+ calls present in the FreeBSD Linux emulation layer, as well as
+ focusing on portability through an endian-independent version of the
+ trail format.</p>
+
+ <p>The OpenBSM distribution provides system include files, the libbsm
+ library, command-line tools such as praudit and auditreduce, sample
+ /etc configuration files, and an audit daemon for use on systems with
+ kernel support.
+ It is appropriate for use stand-alone in processing trails generated
+ by BSM-enabled systems, as well as for use as the foundation of OS
+ audit implementations requiring libraries, command-line tools,
+ etc.</p>
- <p>The OpenBSM distribution includes system include files appropriate
- for inclusion in an operating system implementation of Audit, libbsm,
- an implementation of the BSM library interfaces for generating,
- parsing, and managing audit records, auditreduce and praudit, audit
- reduction and printing tools, API documentation, and sample /etc
- configuration files.
- Works in progress include extensions to the libbsm API to support
- easier audit trail analysis, including a pattern matching
- library.</p>
+ <p>OpenBSM is built and tested on several versions of FreeBSD, Mac OS
+ X, and Linux; some components, such as the audit daemon, require
+ kernel audit support (present in newer versions of FreeBSD and Mac
+ OS X), but the basic library and audit trail tools run on all three
+ platforms regardless of OS kernel support.
+ Written in portable C and built using autoconf/automake, it is easy
+ to adapt OpenBSM for use on new platforms.</p>
</html>
</section>
More information about the p4-projects
mailing list