Audit Parsing Library Requirements
Steve Grubb
sgrubb at redhat.com
Thu Mar 9 19:21:12 UTC 2006
On Thursday 09 March 2006 14:13, Michael C Thompson wrote:
> My understanding of auserach is to set up our search paramters and
> then call ausearch_next_event to begin returning records which match the
> parameters we've set.
Yes.
> If this is the case, from a testing standpoint, it would be nice to be able
> to set up the parameters on every value of the record as we expect it to
> look.
Please give an example to make sure I understand you.
-Steve
More information about the Linux-audit
mailing list