Thanks. Could you also point to portions in the codebase where these
functions are called for monitoring file access? The reason I'm asking for
this is that I'm trying to provide auditing for files of a specific type
and I'm trying to understand how would that work. Any help would be
appreciated.
-
Greetings,
Could anyone point me to a source for comprehensive documentation for the
Linux audit framework? I want to know how the framework interacts with the
kernel to retrieve log information.
Thanks.
--
Linux-audit mailing list
Linux-audit@redhat.com
https://listman.redhat.com/mailman/listinfo
