Hi,
Im trying to run auditd or go-audit on LXC but have issue with :
With auditd :
With go-audit :
Have adding this options but that not work
If you have any idea about this ?
PS : I think best solution is to audit PVE Node directly i can see what user and ct have running software.
Best Regards
Im trying to run auditd or go-audit on LXC but have issue with :
With auditd :
Code:
sudo: unable to send audit message: Operation not permitted
You must be root to run this program.With go-audit :
Code:
Failed to flush existing audit rules. Error: exit status 4Have adding this options but that not work
Code:
lxc.apparmor.profile: unconfined
lxc.cap.drop: audit_control audit_writeIf you have any idea about this ?
PS : I think best solution is to audit PVE Node directly i can see what user and ct have running software.
Best Regards
Last edited: