Date: Mon, 20 Sep 2021 11:07:34 -0400 From: Dan Langille <dan@langille.org> To: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Cc: Pawel Jakub Dawidek <pjd@freebsd.org> Subject: auditdistd - audit trail file retntion Message-ID: <a5985a75-77de-8bdf-ae42-52d940d7a11a@langille.org>
next in thread | raw e-mail | index | archive | help
Hello,
I am using auditdistd on FreeBSD 11.4 and 12.2 - I write about audit
trail files retention.
Is there an option to dispose of older logs in /var/audit/dist ?
So far, it seems like a custom cronjob is in order. Something like:
/usr/bin/find /var/audit/dist -type f -mtime +7 -exec rm {} \;
FYI: I have read up about auditd, /etc/security/audit_control, and the
audit -e option. They do not apply to auditdistd.
Thank you.
--
Dan Langille - dan@langille.org
https://langille.org/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a5985a75-77de-8bdf-ae42-52d940d7a11a>