Linux Audit Project

Created on 2020-11-15T16:22:31-06:00

Return to the Index

This card pertains to a resource available on the internet.

This card can also be read via Gemini.

The Linux Audit subsystem provides a secure logging framework that is used to capture and record security relevant events. It consists of a kernel component which generates audit records based on system activity, a userspace daemon which logs these records to a local file or a remote aggregation server, and a set of userspace tools to for audit log inspection and post-processing. (github)