[Freeipa-devel] policy enforcement mechanics
Ahmed Kamal
email.ahmedkamal at googlemail.com
Mon Jul 21 12:46:03 UTC 2008
Hi everyone,
Is there any document or wiki page that describes exactly how policy
enforcement is going to be handled in freeIPA. I'm basically interested in
stuff like controlling unusual application behavior, like what if I allow
vim to a user, and the user does ":bash" to get a shell ?
Also, about auditing .. Would it be possible to audit the whole session of a
user (all files he touched/changed, all commands he used) ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080721/e1587c67/attachment.htm>
More information about the Freeipa-devel
mailing list