python and audit
Hello all,
So i've setup auditing on a my system for any syscalls for any opens that fail (-a exit,always -F arch=b64 -S open -F success=0) and noticed that python is very noisy.
Maybe i'm not reading the log correctly, but comm=yum-updatesd-he exe=/usr/bin/python tells me that python is trying to run yum-updatesd? I've found a few other lines that have python as the exe but different comm values. But each line says that it's trying to open a file that doesnt exist. What is python doing? Can i change it?
|