From mboxrd@z Thu Jan  1 00:00:00 1970
From: Steve Grubb <sgrubb@redhat.com>
Subject: Re: What is the list of SYSCALLS we can audit for
Date: Wed, 2 May 2007 13:33:17 -0400
Message-ID: <200705021333.17398.sgrubb@redhat.com>
References: <4638A9FB.1090300@jhuapl.edu>
Mime-Version: 1.0
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Return-path: <linux-audit-bounces@redhat.com>
In-Reply-To: <4638A9FB.1090300@jhuapl.edu>
Content-Disposition: inline
List-Unsubscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/linux-audit>
List-Post: <mailto:linux-audit@redhat.com>
List-Help: <mailto:linux-audit-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=subscribe>
Sender: linux-audit-bounces@redhat.com
Errors-To: linux-audit-bounces@redhat.com
To: linux-audit@redhat.com
Cc: Robert Evans <bob.evans@jhuapl.edu>
List-Id: linux-audit@redhat.com

On Wednesday 02 May 2007 11:10, Robert Evans wrote:
> I see a lot of examples and documentation with the -S flag, and a syste=
m
> call definition. =A0Is there a file/table that lists all system call
> available to audit?

I don't have one - but its all syscalls. There are a couple you can't aud=
it on=20
exit, though.

-Steve