>So you are saying that its possible for a user to do one of the following : > > (1) downlod OpenSH source .. build it themselves > (2) get it from SunFreeware > (3) get it from Blastwave > >and then access the system in a way that slips under the radar of the BSM >modules? The user can do whatever they want and not be tracked?
No; it is possible to do so *for the administrator*. You can't start the OpenSSH daemon as an ordinary user[1] Casper [1] Except in the limited fashion of allowing only your own logins but all processes you start are already audited fully. _______________________________________________ opensolaris-discuss mailing list opensolaris-discuss@opensolaris.org