Joerg Schilling wrote: > "Garrett D'Amore" <gdamore at sun.com> wrote: > >>> Similarly the existing ON rmt program does not do any audit so >>> replacing it with the rmt from star should not be required to do any >>> auditing either. >> I *strongly* disagree with this one. Joerg's /etc/rmt makes >> authorization/access control decisions based on a policy of its own >> (driven by the /etc/default/rmt file). I don't think you can get away >> without doing auditing if you're going to have this "security >> enhancement" in rmt. > > I am not sure what you understand by auditing in this context. rmt allows you > to define which user from which host may access which files. There is no > similar other feature on OpenSolaris.
http://opensolaris.org/os/community/arc/policies/audit-policy/ -- Darren J Moffat
