diff options
Diffstat (limited to 'contrib/openbsm/bin/auditfilterd/auditfilterd.8')
-rw-r--r-- | contrib/openbsm/bin/auditfilterd/auditfilterd.8 | 77 |
1 files changed, 77 insertions, 0 deletions
diff --git a/contrib/openbsm/bin/auditfilterd/auditfilterd.8 b/contrib/openbsm/bin/auditfilterd/auditfilterd.8 new file mode 100644 index 0000000..0d9d2cb --- /dev/null +++ b/contrib/openbsm/bin/auditfilterd/auditfilterd.8 @@ -0,0 +1,77 @@ +.\"- +.\" Copyright (c) 2006 Robert N. M. Watson +.\" All rights reserved. +.\" +.\" Redistribution and use in source and binary forms, with or without +.\" modification, are permitted provided that the following conditions +.\" are met: +.\" 1. Redistributions of source code must retain the above copyright +.\" notice, this list of conditions and the following disclaimer. +.\" 2. Redistributions in binary form must reproduce the above copyright +.\" notice, this list of conditions and the following disclaimer in the +.\" documentation and/or other materials provided with the distribution. +.\" +.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND +.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE +.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE +.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL +.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS +.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) +.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT +.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY +.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF +.\" SUCH DAMAGE. +.\" +.\" $P4: //depot/projects/trustedbsd/openbsm/bin/auditfilterd/auditfilterd.8#2 $ +.\" +.Dd March 27, 2006 +.Dt AUDITFILTERD 8 +.Os +.Sh NAME +.Nm auditfilterd +.Nd audit filter daemon +.Sh SYNOPSIS +.Nm auditfilterd +.Op Fl d +.Op Fl c Ar conffile +.Op Fl t Ar trailfile +.Sh DESCRIPTION +The +.Nm +daemon is an extensible audit event monitoring daemon, allowing pluggable +modules to track audit events from a live audit source. +It is configured using the +.Xr audit_filter 5 +configuration file. +.Pp +The options are as follows: +.Bl -tag -width Ds +.It Fl d +Starts the daemon in debug mode - it will not daemonize. +.It Fl c Ar conffile +Specify an alternative configuration file. +.It Fl t Ar trailfile +Specify an alternative source of audit event records. +.El +.Sh FILES +.Bl -tag -width "/etc/security/audit_filterd" -compact +.It Pa /etc/security/audit_filterd +Default configuration file for +.Nm . +.It Pa /dev/auditpipe +Default audit record source for +.Nm . +.El +.Sh SEE ALSO +.Xr audit 8 , +.Xr auditd 8 +.Sh AUTHORS +The +.Nm +daemon and audit filter APIs were created by Robert Watson. +.Sh HISTORY +The OpenBSM implementation was created by McAfee Research, the security +division of McAfee Inc., under contract to Apple Computer Inc. in 2004. +It was subsequently adopted by the TrustedBSD Project as the foundation for +the OpenBSM distribution. |