>So you are saying that its possible for a user to do one of the following :
>
> (1) downlod OpenSH source .. build it themselves
> (2) get it from SunFreeware
> (3) get it from Blastwave
>
>and then access the system in a way that slips under the radar of the BSM
>modules?  The user can do whatever they want and not be tracked?

No; it is possible to do so *for the administrator*.

You can't start the OpenSSH daemon as an ordinary user[1]


Casper

[1] Except in the limited fashion of allowing only your own logins but all
processes you start are already audited fully.
_______________________________________________
opensolaris-discuss mailing list
opensolaris-discuss@opensolaris.org

Reply via email to