Linux kernel Audit support
I have enabled the Linux kernel audit support and am able to get the audit.log file properly.
But I need to check for a particular scenario where my Linux machine goes to deep sleep and then wakes up from that state. I need to collect the logs during this transition. Meaning to say - I would like to audit which files/processes is getting audited during this transition (wake up from deep sleep). Please let me know what else I should do along with enabling the Linux kernel audit support? |
Quote:
|
Thanks for the response.
I am able to get the audit.log(s) files now. I would like to know, why is there no daemon process entries in the log file? Is there any specific settings/configurations that we need to do, in order to track the daemon processes as well? Please guide ... |
All times are GMT -5. The time now is 04:39 PM. |