Can audit be configured to only log file creation, not modification or access? L... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bennofs on Feb 2, 2019 \| parent \| context \| favorite \| on: Dotfile madness Can audit be configured to only log file creation, not modification or access? Last time I didn't find a way to do that and I don't want to write a log file entry for every file access.

fwip on Feb 2, 2019 [–]

You can at least ignore read events, not sure about separating write from creation.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact