Re: AVC messages
* Steve Grubb (sgrubb(a)redhat.com) wrote:
Hi,
I was looking at my audit logs and have a question. Does the SE Linux AVC
denial messages constitute something that ought to be in the audit logs? Or
does it belong in syslog?
It's typical for audit requirements to mandate MAC policy auditing. I
know LSPP has this requirement for example.
thanks,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net