Re: RHEL4 panic when renaming with a watched file as the target
On Mon, 2007-02-05 at 14:45 -0500, Eric Paris wrote:
Since the upstream filesystem auditing is different than RHEL4 this
problem (I believe) is RHEL4 specific. Lets assume I add the rule
auditctl -w /tmp/watched_file
then I run
touch /tmp/unwatched_file
mv -f /tmp/watched_file
*OBVIOUSLY* I meant to say
mv -f /tmp/unwatched_file /tmp/watched_file
-Eric