svn commit: r243947 - in stable/9/etc: . mail
Robert Watson
rwatson at FreeBSD.org
Thu Dec 6 11:52:32 UTC 2012
Author: rwatson
Date: Thu Dec 6 11:52:31 2012
New Revision: 243947
URL: http://svnweb.freebsd.org/changeset/base/243947
Log:
Early MFC of portions of r243752 adding an auditdistd user to stable/8
in order to ease future upgrades; the remainder of r243752 is left for
a future MFC of the OpenBSM upgrade:
Merge a number of changes required to hook up OpenBSM 1.2-alpha2's
auditdistd (distributed audit daemon) to the build:
- Manual cross references
- Makefile for auditdistd
- rc.d script, rc.conf entrie
- New group and user for auditdistd; associated aliases, etc.
The audit trail distribution daemon provides reliable,
cryptographically protected (and sandboxed) delivery of audit tails
from live clients to audit server hosts in order to both allow
centralised analysis, and improve resilience in the event of client
compromises: clients are not permitted to change trail contents
after submission.
Submitted by: pjd
Sponsored by: The FreeBSD Foundation (auditdistd)
Modified:
stable/9/etc/ftpusers
stable/9/etc/mail/aliases
stable/9/etc/master.passwd
Modified: stable/9/etc/ftpusers
==============================================================================
--- stable/9/etc/ftpusers Thu Dec 6 08:45:43 2012 (r243946)
+++ stable/9/etc/ftpusers Thu Dec 6 11:52:31 2012 (r243947)
@@ -19,6 +19,7 @@ _pflogd
_dhcp
uucp
pop
+auditdistd
www
hast
nobody
Modified: stable/9/etc/mail/aliases
==============================================================================
--- stable/9/etc/mail/aliases Thu Dec 6 08:45:43 2012 (r243946)
+++ stable/9/etc/mail/aliases Thu Dec 6 11:52:31 2012 (r243947)
@@ -26,6 +26,7 @@ postmaster: root
# General redirections for pseudo accounts
_dhcp: root
_pflogd: root
+auditdistd: root
bin: root
bind: root
daemon: root
Modified: stable/9/etc/master.passwd
==============================================================================
--- stable/9/etc/master.passwd Thu Dec 6 08:45:43 2012 (r243946)
+++ stable/9/etc/master.passwd Thu Dec 6 11:52:31 2012 (r243947)
@@ -19,6 +19,7 @@ _pflogd:*:64:64::0:0:pflogd privsep user
_dhcp:*:65:65::0:0:dhcp programs:/var/empty:/usr/sbin/nologin
uucp:*:66:66::0:0:UUCP pseudo-user:/var/spool/uucppublic:/usr/local/libexec/uucp/uucico
pop:*:68:6::0:0:Post Office Owner:/nonexistent:/usr/sbin/nologin
+auditdistd:*:78:77::0:0:Auditdistd unprivileged user:/var/empty:/usr/sbin/nologin
www:*:80:80::0:0:World Wide Web Owner:/nonexistent:/usr/sbin/nologin
hast:*:845:845::0:0:HAST unprivileged user:/var/empty:/usr/sbin/nologin
nobody:*:65534:65534::0:0:Unprivileged user:/nonexistent:/usr/sbin/nologin
More information about the svn-src-stable-9
mailing list