add stime audit rule
This commit is contained in:
parent
cfdb44c204
commit
347dc10d88
1 changed files with 1 additions and 0 deletions
|
@ -3,6 +3,7 @@
|
|||
|
||||
-a always,exit -F arch=b64 -S adjtimex,settimeofday,clock_settime -k time-change
|
||||
-a always,exit -F arch=b32 -S adjtimex,settimeofday,clock_settime -k time-change
|
||||
-a always,exit -F arch=b32 -S stime -F key=audit_time_rule
|
||||
-w /etc/localtime -p wa -k time-change
|
||||
|
||||
## Records when events occur that modify user and group passwords and ID's
|
||||
|
|
Loading…
Reference in a new issue