How do I perform a break up or an analysis of the different types of logs in the audit.log file ?
Issue
- I see the below messages are repeating quite often, why :-
Sep 23 08:36:26 server auditd[3271]: Audit daemon rotating log files
Sep 23 09:22:43 server auditd[3271]: Audit daemon rotating log files
Sep 23 10:09:05 server auditd[3271]: Audit daemon rotating log files
Sep 23 10:55:28 server auditd[3271]: Audit daemon rotating log files
- How do I find out the reason for incessantly growing
/var/log/audit.log
files?
Environment
- Red Hat Enterprise Linux 6.2
- auditd
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.