while we're arguing about pfexec, would it be possible to make it log through syslog in addition to generating audit information? syslog logging is a feature sudo has which i like and use. I've been looking at implementing it myself (i actually, modified it to use a PFLOG variable in a new /etc/default/pfexec file to know whether to log or not) and without modifying the way pfexec works now we can log what command was executed, the parameters and a few other thing but not it's return value
nacho
