28 lines
1.1 KiB
Plaintext
28 lines
1.1 KiB
Plaintext
What: Audit Login UID
|
|
Date: 2005-02-01
|
|
KernelVersion: 2.6.11-rc2 1e2d1492e178 ("[PATCH] audit: handle loginuid through proc")
|
|
Contact: linux-audit@redhat.com
|
|
Users: audit and login applications
|
|
Description:
|
|
The /proc/$pid/loginuid pseudofile is written to set and
|
|
read to get the audit login UID of process $pid as a
|
|
decimal unsigned int (%u, u32). If it is unset,
|
|
permissions are not needed to set it. The accessor must
|
|
have CAP_AUDIT_CONTROL in the initial user namespace to
|
|
write it if it has been set. It cannot be written again
|
|
if AUDIT_FEATURE_LOGINUID_IMMUTABLE is enabled. It
|
|
cannot be unset if AUDIT_FEATURE_ONLY_UNSET_LOGINUID is
|
|
enabled.
|
|
|
|
What: Audit Login Session ID
|
|
Date: 2008-03-13
|
|
KernelVersion: 2.6.25-rc7 1e0bd7550ea9 ("[PATCH] export sessionid alongside the loginuid in procfs")
|
|
Contact: linux-audit@redhat.com
|
|
Users: audit and login applications
|
|
Description:
|
|
The /proc/$pid/sessionid pseudofile is read to get the
|
|
audit login session ID of process $pid as a decimal
|
|
unsigned int (%u, u32). It is set automatically,
|
|
serially assigned with each new login.
|
|
|