TrustedBSD Audit Project
Andrew R. Reiter
arr at watson.org
Wed Oct 3 20:29:59 GMT 2001
TrustedBSD Audit Project
------------------------
Introduction
The purpose of this project is to design and implement the audit system
for TrustedBSD. This document is meant to describe the thoughts and goals
behind the project and provide a basis for the design document. The design
document will the guideline for the implementation and hopefully we can all
get it ready within the next couple of weeks, or however long deemed necesary
by possible mailing list discussions. Discussions have been taking place
between Logan Gabriel, Andrew Reiter, Robert Watson, and Stephanie Wehner
and we felt it was best to move the conversations and design talk to an
open forum. We encourage all to help in this process.
Thoughts & Goals List
---------------------
- Develop functional, standards adhering, and optimized audit system
for TrustedBSD.
- Adhere to Posix.1e specification which defines an interface to a
trusted audit system.
- We should deviate and/or expand upon the specification where it is
deemed by all to be necesary or uniquely helpful.
- Design and Implement a possible alarm interface for alerting admins
to critical problems, which can include something like storage space
running out.
- Research and possibly develop a new local filestore and local filesystem
pair for the sole purposes of holding audit records. The goal is to
maximize use of storage space and create the ability for optimized
audit record lookups.
- This includes topics like compression and format of the record on disk.
- Research and implement remote logging capabilities.
This is meant to be an overview of the goals, but if you believe there is
something worth seriously looking at that is not mentioned here, please
email the list.
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-audit" in the body of the message
More information about the trustedbsd-audit
mailing list