[RFC][PATCH] (#6) filesystem auditing
David Woodhouse
dwmw2 at infradead.org
Thu Mar 17 16:39:00 UTC 2005
On Tue, 2005-03-15 at 14:25 -0500, Stephen Smalley wrote:
> Ok, please incorporate the patch below into your patch so that SELinux
> won't prevent using your new audit operations.
>
> Index: linux-2.6/security/selinux/nlmsgtab.c
> ===================================================================
> RCS file: /nfshome/pal/CVS/linux-2.6/security/selinux/nlmsgtab.c,v
> retrieving revision 1.3
> diff -u -p -r1.3 nlmsgtab.c
> --- linux-2.6/security/selinux/nlmsgtab.c 26 Jan 2005 21:21:27 -0000 1.3
> +++ linux-2.6/security/selinux/nlmsgtab.c 15 Mar 2005 18:49:29 -0000
> @@ -98,6 +98,8 @@ static struct nlmsg_perm nlmsg_audit_per
> { AUDIT_DEL, NETLINK_AUDIT_SOCKET__NLMSG_WRITE },
> { AUDIT_USER, NETLINK_AUDIT_SOCKET__NLMSG_WRITE },
> { AUDIT_LOGIN, NETLINK_AUDIT_SOCKET__NLMSG_WRITE },
> + { AUDIT_WATCH_INS, NETLINK_AUDIT_SOCKET__NLMSG_WRITE },
> + { AUDIT_WATCH_REM, NETLINK_AUDIT_SOCKET__NLMSG_WRITE },
This is in the audit.13 kernel which I've just uploaded into the yum
repository.
--
dwmw2
More information about the Linux-audit
mailing list