From mboxrd@z Thu Jan  1 00:00:00 1970
From: John Dennis <jdennis@redhat.com>
Subject: Dictionary of audit records
Date: Thu, 16 Aug 2007 15:36:53 -0400
Message-ID: <1187293013.28040.96.camel@finch.boston.redhat.com>
Mime-Version: 1.0
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
Return-path: <linux-audit-bounces@redhat.com>
Received: from [172.16.80.36] (finch.boston.redhat.com [172.16.80.36])
	by mail.boston.redhat.com (8.13.1/8.13.1) with ESMTP id l7GJasnv006457
	for <linux-audit@redhat.com>; Thu, 16 Aug 2007 15:36:54 -0400
List-Unsubscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/linux-audit>
List-Post: <mailto:linux-audit@redhat.com>
List-Help: <mailto:linux-audit-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=subscribe>
Sender: linux-audit-bounces@redhat.com
Errors-To: linux-audit-bounces@redhat.com
To: linux-audit@redhat.com
List-Id: linux-audit@redhat.com

Is there a dictionary of audit records which lists every audit record
and every field in that record as well as how to interpret that field?

Does the audit data follow any type of regular schema and is that
regularity enforced in any manner?
-- 
John Dennis <jdennis@redhat.com>