[2179] in linux-security and linux-alert archive
[linux-security] Re: You got some 'splaininn to do Lucy ;-)
daemon@ATHENA.MIT.EDU (Aleph One)
Thu Jul 29 03:20:13 1999
Date: Wed, 28 Jul 1999 22:16:46 -0700
From: Aleph One <aleph1@underground.org>
To: Kirwan Marty <Kirwan_Marty@prc.com>, linux-security@redhat.com
In-Reply-To: <A09D16EC48EED211ACF000902732D1D84F4750@MCL6.prc.com>; from Kirwan Marty on Wed, Jul 28, 1999 at 01:18:52PM -0400
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
On Wed, Jul 28, 1999 at 01:18:52PM -0400, Kirwan Marty wrote:
> We just had a security application vendor come in. We asked about Linux
> support and he said that putting a security application on top of an
> insecure OS was useless. When I asked what he meant by insecure he replied
> that Linux does not have a true Auditing capability - as opposed to HP-UX &
> Solaris which they do support. Can anyone explain to me what he was talking
> about?
He is talking about audit trail. A subset of (the defunct) POSIX.1e standard.
He is correct that Linux does not support auditing. Then again I've yet
to see many application that make use of audting.
> Thanks,
>
>
> Marty
>
> --
> ----------------------------------------------------------------------
> Please refer to the information about this list as well as general
> information about Linux security at http://www.aoy.com/Linux/Security.
> ----------------------------------------------------------------------
>
> To unsubscribe:
> mail -s unsubscribe linux-security-request@redhat.com < /dev/null
>
--
Aleph One / aleph1@underground.org
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null
