How do I perform a break up or an analysis of the different types of logs in the audit.log file ?

Solution Unverified - Updated -

Issue

  • I see the below messages are repeating quite often, why :-
Sep 23 08:36:26 server auditd[3271]: Audit daemon rotating log files
Sep 23 09:22:43 server auditd[3271]: Audit daemon rotating log files
Sep 23 10:09:05 server auditd[3271]: Audit daemon rotating log files
Sep 23 10:55:28 server auditd[3271]: Audit daemon rotating log files
  • How do I find out the reason for incessantly growing /var/log/audit.log files?

Environment

  • Red Hat Enterprise Linux 6.2
  • auditd

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.