Reading audit.log on Linux
Tags:
auditd linux
#1
byron.anderson_atmosera.com
I am trying to read the audit.log on linux. I am using the input noted below; however, I keep receiving this error:
WARNING Module audit has no input files to read
<Input audit> Module im_file File "/var/log/audit/audit.log" </Input>
Can somebody please explain to me what this error means and why I would be receiving it?
Thanks in advance for any help on this!
#1
byron.anderson_atmosera.com
I am trying to read the audit.log on linux. I am using the input noted below; however, I keep receiving this error:
WARNING Module audit has no input files to read
<Input audit>
Module im_file
File "/var/log/audit/audit.log"
</Input>
Can somebody please explain to me what this error means and why I would be receiving it?
Thanks in advance for any help on this!
Hello.
Could you drop here full config along with bigger piece of logs?
Regards, Arch
