Archive for the 'Audit' Category

Linux audit files to see who made changes to a file

Published December 27th, 2007 in Audit and Security. Comments

This is one of the key questions many new sys admin ask:
How do I audit file events such as read / write etc? How can I use audit to see who changed a file in Linux?
The answer is to use 2.6 kernel’s audit system. Modern Linux kernel (2.6.x) comes with auditd daemon. It’s responsible for [...]

 

September 2010
M T W T F S S
« May    
 12345
6789101112
13141516171819
20212223242526
27282930