![](https://seccdn.libravatar.org/avatar/bff0c215e01f23fcee6fe49e65fae458.jpg?s=120&d=mm&r=g)
Thats a broad issue. We are using the traditional UNIX methods and replacing them ... well.
What actually is the problem with the current one?
Ah, I don't know. I guess the usage could be more simplified. I've tried to use ACL's, but it seems a bit complicated sometimes - of course using Samba in between makes it a little easier.
ACLs are supported on most of our filesystems now.
3) File and folder access auditing - very much needed feature in corporations!! A must have. In SLES8 and SLES9 we included LAuS, a EAL/CAPP compliant audit system. Yes, I've seen LAuS mentioned in some places.
For 10.1 and SLES 10 we include the upstream lightweight auditing framework, which is not yet EAL/CAPP compliant. (Its in the "audit" package.) Why not LAuS? Is there something wrong with it?
We never got it into the mainline kernel, due to some bad timing issues mostly. As we were finished doing it for SLES 9, the mainline kernel suddenly got its own audit system, which of course conflicted with LAuS. We never found the time and resources to push our stuff in there.
However, some auditing capabilities are available already in this system. Which system do you refer to?
The one in the mainline kernel. The userland is here: http://people.redhat.com/sgrubb/audit/ Mostly done by Redhat/IBM currently. Ciao, Marcus