> while we're arguing about pfexec, would it be > possible to make it log > through syslog in addition to generating audit > information?
I've almost got this implemented. This is on my request: CR 6888027 Updated, P3 rbac/utilities pfexec does not log to auth.notice or auth.crit Basically I have it working except for the big one. If I use pfexec as a regular user then I'm running into a problem with setting the group id. If I switch to a profile shell and then run pfexec it logs through to syslog without a hitch. Jan 16 15:10:21 r51.ilkda.com pfexec[3099]: [ID 824085 auth.notice] /usr/gnu/bin/cat started by root Can someone help me with this? I've used up what little I know about C to get this far. thanks in advance, alan -- This message posted from opensolaris.org
