Subject: Re: Some Ideas about Administrator's life
To: =?koi8-r?Q?=E1=CC=C5=CB=D3=C1=CE=C4=D2=20=F4=C9=C8=CF=CE=CF?=ff <tikhonoff@bk.ru>
From: Jeremy C. Reed <reed@reedmedia.net>
List: netbsd-advocacy
Date: 01/06/2005 10:43:33
On Thu, 6 Jan 2005, [koi8-r] =E1=CC=C5=CB=D3=C1=CE=C4=D2 =F4=C9=C8=CF=CE=CF=
ff wrote:

> I have little addition in the structure of NetBSD. As for as I know,
> NetBSD meant for work with large number of users and processes.
> Therefore I suggest modify interpritation of log-files. Now I developing
> a program, which allow to look some information form this files on the
> base of rules. This rules add to rulelist by Root.
> Finally, if we use this addition, we can sift out many unnecessary
> information and backtrace negative user's actions.

Do you have a URL to point us to your project?

And is it ready to use now?

> Moreover, now in the Net we can find many rootkits. May be we have
> possibility to add a protection from this trouble?

I have used rkhunter under NetBSD. (I see it is not packaged for NetBSD
yet.)

http://www.rootkit.nl/projects/rootkit_hunter.html

 Jeremy C. Reed

 =09  =09 =09 BSD News, BSD tutorials, BSD links
=09  =09 =09 http://www.bsdnewsletter.com/