mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-04 08:24:42 +01:00
e56ed9a68a
Acked-By: Steve Beattie <sbeattie@ubuntu.com> The format of audit messages that are redirected to syslog because auditd isn't running changed between Hardy and Intrepid and now have the type=NNNN field before the audit tag like-- Nov 1 22:24:43 box kernel: [ 158.113592] type=1503 audit(1225603483.635:5): operation="inode_permission" requested_mask="r::" denied_mask="r::" fsuid=7 name="/proc/7034/net/" pid=7034 profile="/usr/sbin/cupsd" I believe this patch will address the moved type=NNNN field as well as capturing non-matching logfile input instead of printing it to stdout. Patch modified by Steve Beattie <sbeattie@ubuntu.com> to take into account a couple of different situations. https://bugs.launchpad.net/bugs/271252 https://bugzilla.novell.com/show_bug.cgi?id=441381 |
||
|---|---|---|
| .. | ||
| doc | ||
| m4 | ||
| src | ||
| swig | ||
| testsuite | ||
| AUTHORS | ||
| autogen.sh | ||
| ChangeLog | ||
| configure.in | ||
| COPYING.LGPL | ||
| INSTALL | ||
| libapparmor1.spec | ||
| Makefile.am | ||
| NEWS | ||
| README | ||
What little documentation exists is in src/aalogparse.h. Please file bugs using http://bugzilla.novell.com under the AppArmor product.