User Space Tools for 2.6 Kernel Auditing
The audit package contains the user space utilities for storing and
processing the audit records generated by the audit subsystem in the
Linux 2.6 kernel.
- Developed at security
- Sources inherited from project openSUSE:Factory
-
9
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory:zSystems/audit && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
README-BEFORE-ADDING-PATCHES | 0000000519 519 Bytes | |
audit-2.2.2.tar.gz | 0000907066 886 KB | |
audit-no-gss.patch | 0000000526 526 Bytes | |
audit-no_plugins.patch | 0000000957 957 Bytes | |
audit-plugins-path.patch | 0000001327 1.3 KB | |
audit-secondary.changes | 0000004647 4.54 KB | |
audit-secondary.spec | 0000005167 5.05 KB | |
audit.changes | 0000036942 36.1 KB | |
audit.spec | 0000008202 8.01 KB | |
auditd.init | 0000006937 6.77 KB | |
auditd.sysconfig | 0000000457 457 Bytes | |
baselibs.conf | 0000000213 213 Bytes |
Revision 61 (latest revision is 105)
Stephan Kulow (coolo)
accepted
request 150561
from
Marcus Meissner (msmeissn)
(revision 61)
** Please send to 12.3 because starting the audit daemon is broken with systemd **** - remove old tarball and update -secondary spec - Audit 2.2.2 , the purpose of this update is too add compatibility with systemd for 12.3 - In auditd, tcp_max_per_addr was allowing 1 more connection than specified - In ausearch, fix matching of object records - Auditctl was returning -1 when listing rules filtered on a key field - Add interpretations for CAP_BLOCK_SUSPEND and CAP_COMPROMISE_KERNEL - Add armv5tejl, armv5tel, armv6l and armv7l machine types (Nathaniel Husted) - Updates for the 3.6 kernel - Add auparse_feed_has_data function to libauparse - Update audisp-prelude to use auparse_feed_has_data - Add support to conditionally build auditd network listener (Tyler Hicks) - In auditd, reset a flag after receiving USR1 signal info when rotating logs - Add optional systemd init script support - Add support for SECCOMP event type - Don't interpret aN_len field in EXECVE records (#869555) - In audisp-remote, do better job of draining queue - Fix capability parsing in ausearch/auparse - Interpret BPRM_FCAPS capability fields - Add ANOM_LINK event type (forwarded request 150497 from elvigia)
Comments 0