messages from 2017-08-23 10:12:52 to 2017-10-02 18:55:53 UTC [more...]
Audisp-remote - connection refused
2017-10-02 18:55 UTC
Systemd Journald and audit logging causing journal issues
2017-10-02 17:30 UTC
why I have lost messages on boot even with very big backlog while I hunting only 2 syscalls?
2017-10-02 14:16 UTC (7+ messages)
[PATCH v6 1/1] audit: Record fanotify access control decisions
2017-09-30 0:09 UTC (3+ messages)
[PATCH V2 1/1] audit: Record fanotify access control decisions
2017-09-26 19:15 UTC (4+ messages)
[PATCH v5 1/1] audit: Record fanotify access control decisions
2017-09-26 13:19 UTC (2+ messages)
[PATCH v4 1/1] audit: Record fanotify access control decisions
2017-09-26 4:16 UTC (2+ messages)
[PATCH v3 1/1] audit: Record fanotify access control decisions
2017-09-26 4:10 UTC (4+ messages)
Excluding audit for BIND daemon
2017-09-23 18:54 UTC (8+ messages)
[PATCH ALT4 V3 1/2] audit: show fstype:pathname for entries with anonymous parents
2017-09-21 14:57 UTC (8+ messages)
` [PATCH ALT4 V3 2/2] audit: filter PATH records keyed on filesystem magic
[PATCH 1/1] audit: Record fanotify access control decisions
2017-09-20 22:47 UTC (15+ messages)
[PATCH V4 00/10] capabilities: do not audit log BPRM_FCAPS on set*id
2017-09-20 22:27 UTC (30+ messages)
` [PATCH V4 01/10] capabilities: factor out cap_bprm_set_creds privileged root
` [PATCH V4 02/10] capabilities: intuitive names for cap gain status
` [PATCH V4 03/10] capabilities: rename has_cap to has_fcap
` [PATCH V4 04/10] capabilities: use root_priveleged inline to clarify logic
` [PATCH V4 05/10] capabilities: use intuitive names for id changes
` [PATCH V4 06/10] capabilities: move audit log decision to function
` [PATCH V4 07/10] capabilities: remove a layer of conditional logic
` [PATCH V4 08/10] capabilities: invert logic for clarity
` [PATCH V4 09/10] capabilities: fix logic for effective root or real root
` [PATCH V4 10/10] capabilities: audit log other surprising conditions
[RFC PATCH 0/5] Fix some early boot audit problems
2017-09-20 18:55 UTC (12+ messages)
` [RFC PATCH 1/5] audit: ensure that 'audit=1' actually enables audit for PID 1
` [RFC PATCH 2/5] audit: initialize the audit subsystem as early as possible
` [RFC PATCH 3/5] audit: don't use simple_strtol() anymore
` [RFC PATCH 4/5] audit: convert audit_ever_enabled to a boolean
` [RFC PATCH 5/5] audit: use audit_set_enabled() in audit_enable()
audit 2.7.8 released
2017-09-19 12:34 UTC (2+ messages)
RFC: Audit Kernel Container IDs
2017-09-19 4:15 UTC (8+ messages)
ausearch --text : missing information
2017-09-18 21:45 UTC (2+ messages)
[PATCH] capabilities: add field names for ambient capabilities
2017-09-18 20:20 UTC (2+ messages)
[PATCH 2/9] Implement containers as kernel objects
2017-09-14 5:47 UTC (6+ messages)
kauditd hold queue overflow in 4.11
2017-09-10 0:13 UTC (9+ messages)
Why there is no PATH record for change file time syscalls ?(utimensat)
2017-09-08 15:38 UTC (6+ messages)
[GIT PULL] Audit patches for v4.14
2017-09-07 20:34 UTC
Auditing console access
2017-09-07 18:23 UTC (4+ messages)
[PATCH] audit: reserve a numerical code for AUDIT_ANOM_PATCHED
2017-09-06 14:29 UTC (4+ messages)
[PATCH] docs: add exclude filter never note
2017-09-06 10:57 UTC
FYI: rebasing audit/next
2017-09-05 14:47 UTC
[PATCH V3 00/10] capabilities: do not audit log BPRM_FCAPS on set*id
2017-09-05 6:45 UTC (57+ messages)
` [PATCH V3 01/10] capabilities: factor out cap_bprm_set_creds privileged root
` [PATCH V3 02/10] capabilities: intuitive names for cap gain status
` [PATCH V3 03/10] capabilities: rename has_cap to has_fcap
` [PATCH V3 04/10] capabilities: use root_priveleged inline to clarify logic
` [PATCH V3 05/10] capabilities: use intuitive names for id changes
` [PATCH V3 06/10] capabilities: move audit log decision to function
` [PATCH V3 07/10] capabilities: remove a layer of conditional logic
` [PATCH V3 08/10] capabilities: invert logic for clarity
` [PATCH V3 09/10] capabilities: fix logic for effective root or real root
` [PATCH V3 10/10] capabilities: audit log other surprising conditions
how to audit auditd itself ?
2017-09-01 15:11 UTC (2+ messages)
passwd and USER_CHAUTHTOK
2017-08-30 19:02 UTC (3+ messages)
[PATCH] lsm_audit: use get_task_comm
2017-08-29 11:34 UTC (3+ messages)
[PATCH] selinux: remove AVC init audit log message
2017-08-23 14:52 UTC (5+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).