Potential Patch

[Ben Lindstrom]

On Sat, 24 Jul 2004, Sergio Gelato wrote:

> * Phil Dibowitz [2004-07-22 16:51:11 -0700]:
> > 1. Solaris BSM/Auditd supprt
> > This is properly ifdef'd out, and I added support in the autoconf stuff to
> > only enable it in Solaris.
>
> Is this really Solaris-only? I'm wondering because I've noticed that the
> sshd shipped by Apple in Mac OS 10.3.4 has a number of "BSM audit:" strings
> including
> BSM audit: solaris_audit_record failed to write "%s" record: %s
>

10.3.x ships with BSM and looks to be compiled in by default, but is is
not active on the OS/X desktop by default.  This may not be the case for
OS/X Server version.

In any respects, I dont see any manpages on the topic which makes me less
inclined to suggest any official support for that platform.

However, it may be something to consider and ensure BSM is more general if
Apple is also planning on using it.

[..]
> > 2. We add a logit() call for people doing "ssh host command" to log the user
> > and commadn (2 places in session.c). Requested by our security staff.
>
> Do you also log all input to the command? If not, what does this extra logging
> buy you over ordinary process accounting?
>

I honestly don't care to see these session.c mods.  I really only care
about the Makefile change at this point.

- Ben