11/16/11

Resolve auditd warning asking to specify arch type

This is to resolve auditd warning asking to specify an arch type for syscall events

Sample auditd warning message:

WARNING - 32/64 bit syscall mismatch in line 14, you should specify an arch

Sample audit.rules line in question:
-a entry,always -S umask

Solution: add "-F arch=64" - without the quotes-  before the -S for the line to read like this:

-a entry,always -F arch=b64 -S umask
-
Labels: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Quick HTTP to HTTPS - Apache2

There are several methods for redirecting your Apache-based website visitors who might type your servers URL using the plain (non-secure) HT...