New posts in auditd

What is the syslog facility for auditd logs?

linux centos syslog rsyslog auditd

Auditd multi-line log format

selinux audit rule not logging anything

Email alert when private keys read from disk (honeypot, auditd)

linux security https auditd alerting

Tracking file deletion using auditd without unlink?

pam_tty_audit and non privileged users

centos pam tty auditd

How to stop journalctl showing audit logs and only keep them in file?

linux logging manjaro auditd

How to tell if auditd has suspended logging?

Getting auditd to record the original user

centos logging auditd

How to configure Auditd to see directory name change?

redhat-enterprise-linux auditd

Disable cron messages in auditd

Why can't I run ausearch (part of auditd) remotely over SSH?

ssh sudo auditd

How to enable systemd's journal audit transport?

linux logging opensuse systemd auditd

Centos 6.5 auditd fails to start with service or /etc/init.d/audit start

init.d centos6.5 auditd sysv

What's the difference between auid, uid, euid, suid, fsuid, obj_uid, gid, egid, sgid, fsgid, obj_gid in `auditctl`?

centos7 audit auditd

How to install `aide` without `aide-common` in debian?

ubuntu debian auditd aide

Log execve's, along with parent process argv?

auditd execve arguments that looks like encoded data

linux ubuntu auditd

CentOS doesn't boot with "A stop job is running for Security Auditing Service" message

linux centos centos7 audit auditd

How to log execution of a specific binary/script using auditd or other

ubuntu logging audit auditd