Daily Archives: September 18, 2012

How to exclude a directory from Linux audit

Using audit to track system changes, with rules from the CIS security guidelines. This server also has Splunk running on it, this created a crap load of changes that are reflected in the audit log files, so much so that … Continue reading

Posted in Linux & Solaris | Leave a comment