Solved

monitor and log every file access on redhat/linux

Posted on 2016-07-23
4
115 Views
Last Modified: 2016-08-06
software suggestions to monitor and log EVERY file access on redhat/linux.
0
Comment
Question by:Xetroximyn
4 Comments
 
LVL 50

Assisted Solution

by:Steve Bink
Steve Bink earned 83 total points
ID: 41726699
The inotify-tools package is what you're looking for.

Note that monitoring *every* file access is going to put a huge load on your server.  Be prepared.
0
 
LVL 61

Assisted Solution

by:gheist
gheist earned 83 total points
ID: 41727398
audit is tool for job.
0
 
LVL 19

Assisted Solution

by:jools
jools earned 83 total points
ID: 41727455
It might be best to configure the service to monitor specific files/directories rather than everything or you will just drown in the noise!
1
 
LVL 25

Accepted Solution

by:
madunix earned 251 total points
ID: 41744775
Use auditd by configuring...
chkconfig auditd on
Add rules to the end of the /etc/audit/audit.rules file
https://www.experts-exchange.com/questions/27972518/Logging-Unix-Linux-Commands.html
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now