> -----Original Message----- > From: fedora-selinux-list-bounces@xxxxxxxxxx > [mailto:fedora-selinux-list-bounces@xxxxxxxxxx] On Behalf Of > Stephen Smalley > I suspect that you don't actually want SELinux auditing here, > as it is just of MAC permission checks, but instead want > ordinary system call auditing. There is ongoing work to > enhance the existing Linux audit framework and userspace > tools toward that end, see the linux-audit mailing list. I joined, and took a look. With the audit tools, and audit=1, do I need to keep SELinux turned on? Thanks. Tom Browder
