[38676] in Kerberos
Re: monitoring ccache access?
daemon@ATHENA.MIT.EDU (Robbie Harwood)
Fri Jan 24 13:25:25 2020
From: Robbie Harwood <rharwood@redhat.com>
To: John Devitofranceschi <foonon@gmail.com>,
"kerberos\@mit.edu" <kerberos@mit.edu>
In-Reply-To: <693B5614-CE5C-4675-B585-247326C50E7F@gmail.com>
Date: Fri, 24 Jan 2020 13:25:08 -0500
Message-ID: <jlg8slwk8zf.fsf@redhat.com>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============4769768103432045326=="
Errors-To: kerberos-bounces@mit.edu
--===============4769768103432045326==
Content-Type: multipart/signed; boundary="=-=-=";
micalg=pgp-sha512; protocol="application/pgp-signature"
--=-=-=
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
John Devitofranceschi <foonon@gmail.com> writes:
> Has anyone ever developed a way to monitor/report on ccache file read
> access?
>
> It seems like one could do something clever with auditd on Linux, but
> I=E2=80=99d be interested in hearing any war stories folks might have abo=
ut
> this sort of thing.
If you're using KCM, at least sssd-kcm will log that already (assuming
the log level is high enough). That's probably the easiest route (I'd
have to think more for other ccache types).
Thanks,
--Robbie
--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=j2rq
-----END PGP SIGNATURE-----
--=-=-=--
--===============4769768103432045326==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
--===============4769768103432045326==--
