Last active
November 18, 2015 17:16
-
-
Save ericchiang/41557fd25c85e2f9a5cb to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
$ sudo tail -f -n 0 /var/log/audit/audit.log | |
type=USER_CMD msg=audit(1447866797.682:2012): pid=11801 uid=1000 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='cwd="/home/eric/drafts" cmd=726B742072756E202D2D696E7365637572652D736B69702D766572696679207368613531322D336632353036376663363966 terminal=pts/2 res=success' | |
type=CRED_REFR msg=audit(1447866797.683:2013): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_env,pam_fprintd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success' | |
type=USER_START msg=audit(1447866797.686:2014): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success' | |
type=NETFILTER_CFG msg=audit(1447866807.325:2015): table=filter family=2 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.325:2016): table=mangle family=2 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2017): table=nat family=2 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2018): table=security family=2 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2019): table=raw family=2 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2020): table=filter family=10 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2021): table=mangle family=10 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2022): table=nat family=10 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2023): table=security family=10 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.327:2024): table=raw family=10 entries=0 | |
type=NETFILTER_CFG msg=audit(1447866807.360:2025): table=nat family=2 entries=72 | |
type=NETFILTER_CFG msg=audit(1447866807.364:2026): table=nat family=2 entries=74 | |
type=NETFILTER_CFG msg=audit(1447866807.367:2027): table=nat family=2 entries=75 | |
type=NETFILTER_CFG msg=audit(1447866807.371:2028): table=nat family=2 entries=76 | |
type=SERVICE_START msg=audit(1447866807.441:2029): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-machined comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' | |
type=LOGIN msg=audit(1447866807.450:2030): pid=11850 uid=0 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 old-auid=1000 auid=4294967295 old-ses=1 ses=4294967295 res=1 | |
type=USER_AVC msg=audit(1447866807.463:2031): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission start for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?' | |
type=AVC msg=audit(1447866807.475:2032): avc: denied { read } for pid=11851 comm="systemd" name="libselinux.so.1" dev="dm-2" ino=6569480 scontext=system_u:system_r:svirt_lxc_net_t:s0:c330,c605 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=file permissive=0 | |
type=AVC msg=audit(1447866807.475:2033): avc: denied { read } for pid=11851 comm="systemd" name="libselinux.so.1" dev="dm-2" ino=6569480 scontext=system_u:system_r:svirt_lxc_net_t:s0:c330,c605 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=file permissive=0 | |
type=USER_AVC msg=audit(1447866807.516:2034): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission stop for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?' | |
type=USER_AVC msg=audit(1447866807.517:2035): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='Unknown permission stop for class system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?' | |
type=USER_END msg=audit(1447866807.521:2036): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_close grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success' | |
type=CRED_DISP msg=audit(1447866807.521:2037): pid=11801 uid=0 auid=1000 ses=1 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_env,pam_fprintd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/2 res=success' | |
type=SERVICE_START msg=audit(1447866808.979:2038): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=NetworkManager-dispatcher comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' | |
type=SERVICE_STOP msg=audit(1447866819.746:2039): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=NetworkManager-dispatcher comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment