Re: AVC messages
On Tuesday 04 January 2005 15:28, Stephen Smalley wrote:
I don't see any real benefit to moving the SELinux policy audit
rules
out of the policy and into a separate audit rule database, particularly
as you would have to then duplicate the policy abstractions in your
audit policy.
I'm not really thinking about moving the rules. Just about how to silence it
or select what kinds of messages it sends to auditd.
-Steve Grubb