Adding a key to syscall rules

Monday, 2 May 2005

Hello,

I wanted to bring something up. Currently, we have the ability to add a custom 
"tag" or key to filesystem auditing rules. I got to thinking that this should 
also be done for syscall auditing. This way, admins can set a rule with a 
custom key and search for it later. (I have to write the search code.) 
Besides being useful, I think this should be done for symmetry between 
syscall & filesystem auditing as well.

-Steve

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Adding a key to syscall rules