Q: auditd output analysis?

To: alpha-osf-managers <alpha-osf-managers@xxxxxxxx>
Subject: Q: auditd output analysis?
From: Craig Makin <Craig_Makin.DOLA@xxxxxxxxxxxxxxxxxxxx>
Date: 4 Dec 96 14:42:51
Followup-To: poster
Sender: alpha-osf-managers-relay@xxxxxxxxxxxxxxxxx

G'day Sysadmin'ers

We currently have 2 alphas running V3.2D-1 with enhanced C2 security enabled. 
"auditd" is running and creating lots of output (std options via audit_setup). 
Our
security administrator tried using the tool to analyse this output and wasn't
impressed (to put it politely).

Q: Are there any tools for analysing and reporting auditd information

Q: Any recommended suggestions of "calls" to be ignored etc?

Is there a whitepaper somewhere ??

     Ta,
      Craig Makin
      Ferntree Computer Corp.

Follow-Ups:

2nd SCSI controller for PCI bus ....

From: Thomas Leitner <tom@xxxxxxxxxxxxxxxxxxxxxx>

Prev: SUMMARY: Inn-1.5b2 compile question
Next: 2nd SCSI controller for PCI bus ....
Index(es):
- Main
- Thread