1287742 – RFE: Add ability to filter on session to the user filter of the audit system

Bug 1287742 - RFE: Add ability to filter on session to the user filter of the audit system

Summary: RFE: Add ability to filter on session to the user filter of the audit system

Keywords:
Status:	CLOSED DEFERRED
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	kernel
Sub Component:
Version:	rawhide
Hardware:	Unspecified
OS:	Unspecified
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Paul Moore
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2015-12-02 15:05 UTC by Steve Grubb
Modified:	2016-06-02 19:43 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-06-02 19:43:53 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Steve Grubb 2015-12-02 15:05:54 UTC

Description of problem:
There are times when admins need to restrict audit events based on the session information. The session ID is in the netlink credentials coming from user space. They just didn't get added to the user filter when they were added to netlink. This is a request to add them to the user filter.

Comment 1 Paul Moore 2016-04-06 23:23:13 UTC

Upstream issue:

 * https://github.com/linux-audit/audit-kernel/issues/4

Comment 2 Paul Moore 2016-06-02 19:43:53 UTC

Closing this as we are tracking upstream RFEs on GitHub now, see link in comment #1.

Note You need to log in before you can comment on or make changes to this bug.