mirror of
https://github.com/opnsense/src.git
synced 2026-04-15 14:29:58 -04:00
c0020399a6
OpenBSM history for imported revision below for reference.
MFC after: 2 weeks
Sponsored by: Apple, Inc.
Obtained from: TrustedBSD Project
OpenBSM 1.1
- Change auditon(2) parameters and data structures to be 32/64-bit architecture
independent. Add more information to man page about auditon(2) parameters.
- Add wrapper functions for auditon(2) to use legacy commands when the new
commands are not supported.
- Add default for 'expire-after' in audit_control to expire trail files when
the audit directory is more than 10 megabytes ('10M').
- Interface to convert between local and BSM fcntl(2) command values has been
added: au_bsm_to_fcntl_cmd(3) and au_fcntl_cmd_to_bsm(3), along with
definitions of constants in audit_fcntl.h.
- A bug, introduced in OpenBSM 1.1 alpha 4, in which AUT_RETURN32 tokens
generated by audit_submit(3) were improperly encoded has been fixed.
- Fix example in audit_submit(3) man page. Also, make it clear that we want
the audit ID as the argument.
- A new audit event class 'aa', for post-login authentication and
authorization events, has been added.
11 lines
175 B
Text
11 lines
175 B
Text
#
|
|
# $P4: //depot/projects/trustedbsd/openbsm/etc/audit_control#8 $
|
|
# $FreeBSD$
|
|
#
|
|
dir:/var/audit
|
|
flags:lo,aa
|
|
minfree:5
|
|
naflags:lo,aa
|
|
policy:cnt,argv
|
|
filesz:2M
|
|
expire-after:10M
|