[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ossec-list
Subject:    [ossec-list] Re: Sun Solaris 8-9 BSM to syslog
From:       "Daniel Cid" <daniel.cid () gmail ! com>
Date:       2006-07-22 23:45:42
Message-ID: b92e6f200607221645i65e99d66u489d409e64acceff () mail ! gmail ! com
[Download RAW message or body]


Hi Amedeo,

Nice stuff. I don't have a solaris here to test it, but I know it can
be useful to
a lot of people. Do you mind if I put it in the ossec web site, so more people
can try and use it? Thanks for the contribution.

--
Daniel B. Cid
dcid ( at ) ossec.net

On 7/21/06, Amedeo Salvati <amedeo.salvati@selesta.it> wrote:
> Hi Daniel,
>
> recently on our customer we have analyzed logs from Sun Solaris 8 to 10
> and with great surprise, we have looked that it can't logs event from
> login process!. but don't worry said my boss: there are Sun Solaris BSM
> with do it, unfortunately on Solaris 8 and 9 it don't redirect to syslog
> (we have at least 90% OS based on it). for resolve this problem i writed
> two script on ksh (my first time on ksh!) who send the logs to syslog,
> i attach it if someone want to use.
>
> For any further information about BSM see:
>
> http://www.sun.com/bigadmin/content/submitted/bsm_audit.html
> http://www.sun.com/software/security/audit/
>
> if you need any further information about scripts please let me know
> amedeo
>
>
> >
>
>

[prev in list] [next in list] [prev in thread] [next in thread]