Auditctl

From wikinotes

Revision as of 14:14, 24 May 2020 by Will (talk | contribs) (Created page with "Audit the linux kernel behaviour. = Examples = <blockquote> == Audit TCP connections == <source lang="bash"> auditctl -A exit,always -S connect # install log auditctl -d exi...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Audit the linux kernel behaviour.

Examples

Audit TCP connections

auditctl -A exit,always -S connect  # install log
auditctl -d exit,always -S connect  # uninstall log

Retrieved from "http://willpittman.net:8080/index.php?title=Auditctl&oldid=18113"

Pages using deprecated source tags