NAME
ccs-auditd - TOMOYO Linux’s auditing daemon
SYNOPSIS
ccs-auditd location_to_save_grant_log location_to_save_reject_log
[remote_ip:remote_port]
DESCRIPTION
This program reads access request logs from kernel and writes to
specified location.
By running this program upon startup, you can save access logs which
violated domain_policy (reject_log) and access logs which didn’t
violate domain_policy (grant_log) in domain_policy file’s format.
You may specify /dev/null as location to save logs. But in that case,
you should set PREFERENCE::audit={ max_grant_log=0 } and/or
PREFERENCE::audit={ max_reject_log=0 } in profile configuration (
/etc/ccs/profile.conf or /proc/ccs/profile ).
remote_ip:remote_port
Get process information via agent listening at specified IP
address and port number.
EXAMPLES
# ccs-auditd /dev/null /var/log/tomoyo/reject_log.txt
NOTES
Start this program from appropriate stage such as /etc/rc.local .
AUTHORS
penguin-kernel _at_ I-love.SAKURA.ne.jp
COPYRIGHT
Copyright © 2005-2010 NTT DATA CORPORATION.
This program is free software; you may redistribute it under the terms
of the GNU General Public License. This program has absolutely no
warranty.
SEE ALSO
ccs-editpolicy-agent (8)