Richard Guy Briggs edited this page Sep 6, 2017 · 10 revisions

Welcome the Linux Audit Documentation Project

The Linux Audit Documentation project is intended to hold documentation and specifications related to the Linux Audit project.

Bug and Feature Requests

We have a page describing the process for reporting and bugs and requesting features.

Reporting Bugs and Feature Requests

Mailing List

All upstream discussion happens on the Linux Audit mailing list.

Mailing List
Mailing List Archive

Documentation

Documents on using and configuring audit.

Enable Auditing on Fedora

Several audit specification documents exist to describe the proper behavior of the Linux Audit system.

Writing Audit Events
Audit System Lifecycle Events
Audit User Account Lifecycle Events
Audit User Login Lifecycle Events
Virtualization Manager Guest Lifecycle Events
Audit Event Parsing Library
Audit State Diagram
Audit Daemon Real Time Event Interface
Audit Event Enrichment
Audit Field Dictionary
Audit Message Ranges
Audit Message Dictionary

Beyond the documents above, the wikis for the kernel audit subsystem and audit userspace have information specific to their respective projects.

Kernel Wiki
Userspace Wiki

Presentations

The audit presentations are listed on the page below.

Audit Presentations

You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.