Путеводитель по Руководству Linux
  User  |  Syst  |  Libr  |  Device  |  Files  |  Other  |  Admin  |  Head  |


   autrace    ( 8 )

программа, похожая на strace (a program similar to strace)

Имя (Name)

autrace - a program similar to strace

Синопсис (Synopsis)

autrace program [-r] [program-args]...

Описание (Description)

autrace is a program that will add the audit rules to trace a process similar to strace. It will then execute the program passing arguments to it. The resulting audit information will be in the audit logs if the audit daemon is running or syslog. This command deletes all audit rules prior to executing the target program and after executing it. As a safety precaution, it will not run unless all rules are deleted with auditctl prior to use.

Параметры (Options)

-r     Limit syscalls collected to ones needed for analyzing
              resource usage. This could help people doing threat
              modeling. This saves space in logs.

Примеры (Examples)

The following illustrates a typical session:


       autrace /bin/ls /tmp
       ausearch --start recent -p 2442 -i


       and for resource usage mode:


       autrace -r /bin/ls
       ausearch --start recent -p 2450 --raw | aureport --file --summary
       ausearch --start recent -p 2450 --raw | aureport --host --summary

Смотри также (See also)

ausearch(8), auditctl(8).