linux-audit / audit-documentation Goto Github PK
View Code? Open in Web Editor NEWDocumentation and specifications
License: Creative Commons Attribution 4.0 International
audit-documentation's People
Contributors
Stargazers
Watchers
Forkers
ssekidde zhangyangisme acidburn0zzz maodapeng raimundojimenez 1eedaegon dalavancloud litew czfan lotusxiao ematsumiya i85yl64 miztake hillu pcmoore ekmixon letmax6831 ygemici atlantiscd9 ackdo gauravjain212 levisre rajinimandhir wojtekdmyszewicz morhayn github-user-6 bkeitaudit-documentation's Issues
BUG: migrate the audit+prelude howto
Original location: https://people.redhat.com/sgrubb/audit/prelude.txt
BUG: migrate the event specification to the wiki
BUG: migrate the real-time event interface specification to the wiki
BUG: skeleton.c handler example should mention it requires binary format + add doc for code format = string mode
Please update text in the wiki surrounding the skeleton.c example audispd listener here, to mention it only works correctly plugin conf format set to "binary". The default value is "string".
A note on how data is passed to listeners when format is "string" would also be helpful here. Specifically:
- assert no header is sent
- records are newline terminated, so i.e. it's essentially equivalent to tailing the audit.log.
- clarify guarantees or lack there of about how multi record (line) events are delivered - are they guaranteed to be contiguous? Are they always available all at once without blocking?
BUG: migrate the event parsing library specification to the wiki
RFE: add a CSV database for audit message types
Create a master documentation audit message type dictionary similar to the existing audit field dictionary
Start with audit.h, libaudit.h and ausearch -m 2>&1 | tr ' ' '\n'| grep "^[A-Z]" | tail -n +4 | sort | less
BUG: migrate the system lifecycle specification to the wiki
BUG: migrate the account lifecycle specification to the wiki
BUG: migrate the audit state diagram to the wiki
BUG: import the dictionary of field names
See https://people.redhat.com/sgrubb/audit/field-dictionary.txt
It is unclear at this point if this is better a file in the git repo or as a wiki page.
RFE: create GitHub issue template for use by the audit-userspace repository
See the GitHub help article and our own wiki page on submitting bug and feature requests:
RFE: add a SUBMITTING_PATCHES file
We should have a SUBMITTING_PATCHES file which documents how to submit patches to this repository.
An example file from libseccomp:
RFE: create a wiki page documenting how to enable audit for SELinux debug on Fedora
We should have a wiki page describing what steps are necessary to enable auditing on Fedora so that it is sufficient for debugging SELinux access/AVC denials.
Stub wiki page: https://github.com/linux-audit/audit-documentation/wiki/HOWTO-Fedora-Enable-Auditing
BUG: migrate the old audit presentations
See Steve's people.redhat.com page: https://people.redhat.com/sgrubb/audit
BUG: import the audit-validation code into a new repo on github.com/linux-audit
BUG: migrate the audit log visualization article
Original location: https://people.redhat.com/sgrubb/audit/visualize/index.html
BUG: migrate the login lifecycle specification to the wiki
BUG: migrate the event enrichment specification to the wiki
BUG: import the ausearch-test code into a new repo on github.com/linux-audit
BUG: create landing pages
At the very least we need a Wiki landing page and a pointer to it from the repository's README file so it is easily found.
RFE: create a wiki page documenting the commit message format
The quick answer here is to simply use the Linux Kernel format, but we need something more explicit as non-kernel developers and non-git users, such as Steve are having a hard time understanding git commits.
RFE: better bug reporting and feature request page in the wiki
Improve upon the basic information on our bug report and feature request wiki page:
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.