| Current Path : /usr/share/audit/sample-rules/ |
| Current File : //usr/share/audit/sample-rules/10-base-config.rules |
## First rule - delete all -D ## Increase the buffers to survive stress events. ## Make this bigger for busy systems -b 8192 ## This determine how long to wait in burst of events --backlog_wait_time 60000 ## Set failure mode to syslog -f 1