RE: Linux-audit Digest, Vol 27, Issue 2

Monday, 11 December 2006

I'm new to the audit subsystem.  I need to get it working well under
RHEL4.  The version that comes with Redhat is very old (1.0.14?)  I
noticed if I upgrade to 1.0.14 it pretty much works the same, but if I
upgrade all the way to 1.3.1, file watch functionality has been removed.
How do I handle auditing of access to security files with 1.3?  I assume
it's some kind of system call we're tracking, but I don't know how to
get a list of system calls that I need to know about.

Thanks,

-Dan Thomas 

-----Original Message-----
From: linux-audit-bounces(a)redhat.com
[mailto:linux-audit-bounces@redhat.com] On Behalf Of
linux-audit-request(a)redhat.com
Sent: Monday, December 11, 2006 12:00 PM
To: linux-audit(a)redhat.com
Subject: Linux-audit Digest, Vol 27, Issue 2

Send Linux-audit mailing list submissions to
	linux-audit(a)redhat.com

To subscribe or unsubscribe via the World Wide Web, visit
	https://www.redhat.com/mailman/listinfo/linux-audit
or, via email, send a message with subject or body 'help' to
	linux-audit-request(a)redhat.com

You can reach the person managing the list at
	linux-audit-owner(a)redhat.com

When replying, please edit your Subject line so it is more specific than
"Re: Contents of Linux-audit digest..."

Today's Topics:

   1. audit 1.3.1 released (Steve Grubb)

----------------------------------------------------------------------

Message: 1
Date: Mon, 11 Dec 2006 11:05:33 -0500
From: Steve Grubb <sgrubb(a)redhat.com&gt;
Subject: audit 1.3.1 released
To: Linux Audit <linux-audit(a)redhat.com&gt;
Message-ID: <200612111105.33708.sgrubb(a)redhat.com&gt;
Content-Type: text/plain;  charset="us-ascii"

Hi,

I've just released a new version of the audit daemon. It can be
downloaded from http://people.redhat.com/sgrubb/audit  It will also be
in rawhide tomorrow. The Changelog is:

- Fix a couple parsing problems (#217952)
- Add tgkill to S390* syscall tables (#218484)
- Fix error messages in ausearch/aureport command options

Please let me know if there are any problems with this release.

-Steve

------------------------------

--
Linux-audit mailing list
Linux-audit(a)redhat.com
https://www.redhat.com/mailman/listinfo/linux-audit

End of Linux-audit Digest, Vol 27, Issue 2
******************************************

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

RE: Linux-audit Digest, Vol 27, Issue 2