Hi everybody,
Is it possible to use RBAC system only for auditing ?
I have a very complex system running with grsec patch, without RBAC system enabled.
Now, I need to audit all the executions of a binary.
Is it possible to do it without any major changement on the system ?
Cheers,
Mitya