Video on “Audit Changes to Important files using auditctl”

Video by Network NUTS, shows how to use the audit daemon and auditctl tool to monitor or track changes done to important files on a Linux machine. Also shows how you can use ausearch command to view the audit logs and then how to make those rules permanent.

Advertisements