Display auditd messages with journalctl5 January 2017·Updated: 5 December 2023·525 words·3 minsAll systems running systemd come with a powerful tool for reviewing the system journal: journalctl.
augenrules fails with “rule exists” when loading rules into auditd3 January 2017·Updated: 5 December 2023·425 words·2 minsWhen I came back from the holiday break, I found that the openstack-ansible-security role wasn’t passing tests any longer.