Hello, Is there a way to setup a watch log to report if a user attempted to "cd" to a directory that they didn't have permission to access. I have watch logs in place but it doesn't seem to report when a "cd" is attempted and permission is denied. Thanks. -Jim
-- Linux-audit mailing list [email protected] https://www.redhat.com/mailman/listinfo/linux-audit
