Hello everyone,
I'm in the midst of
actually implementing the DSS required stuff on my 10.3.x box.
I have the document titled "Windows 2000/XP - How to Enable Security and
Auditing Requirements" from our DSS person. (I'm 90% certain the doc came from
here:
http://www.dss.mil/infoas/index.htm
The last item on the right column in the "Guidance" section)
I'm wondering if anyone on the list has already distilled this document
down into a quick cheat sheet guide for how I would set up my Mac 10.3
machine. - What'd be really dreamy would be for someone to write up a GUI
frontend for the auditing SETUP - I have the audit reader (from Apple).
I'll admit that most of it is very straightforward - using the System
Preferences for example. The Password Policy stuff seems easy too.
But how about the "new" auditing stuff? I understand the editing of the
"audit_control" file - the "flags"
BUT
I'm trying to match up the Windows lingo in the DSS guide with the
Mac/BSD lingo.
For example - in Windows language I need to Audit:
Logon Events - success and failures
Account Management - success and failures
Directory Service - failures only
Logon Events Directory Services - success and
failures
Object Access - failures only
Policy Change - success and failures
Privilege Use - success and failures
Process Tracking - failures only
System Events - success and failures
In the Mac OS X Audit Even Class Structure
(Page 77 of the "Common Criteria Configuration and Administration Guide" the
nomenclature is different.
Some of the Mac ones line up with the Windows
- "lo" for example - Login/Logout. But some of the others are questionable. -
"Policy Change? - what might that one be? How about the rest of
them?
ok - Thanks - I'm just trying to not reinvent
the wheel here. If anyone's done it already - I would love to get some advice
on getting it right to make DSS happy.
Jason
email@hidden
_____________________________________
Jason C. Dickinson
Terahertz Scientist
Submillimeter-Wave Technology Laboratory
University of Massachusetts Lowell
______________________________________