11dd34cfcSRichard Guy BriggsWhat: Audit Login UID 21dd34cfcSRichard Guy BriggsDate: 2005-02-01 31dd34cfcSRichard Guy BriggsKernelVersion: 2.6.11-rc2 1e2d1492e178 ("[PATCH] audit: handle loginuid through proc") 41dd34cfcSRichard Guy BriggsContact: linux-audit@redhat.com 51dd34cfcSRichard Guy BriggsUsers: audit and login applications 61dd34cfcSRichard Guy BriggsDescription: 71dd34cfcSRichard Guy Briggs The /proc/$pid/loginuid pseudofile is written to set and 8*b75d8f38SRichard Guy Briggs read to get the audit login UID of process $pid as a 9*b75d8f38SRichard Guy Briggs decimal unsigned int (%u, u32). If it is unset, 10*b75d8f38SRichard Guy Briggs permissions are not needed to set it. The accessor must 11*b75d8f38SRichard Guy Briggs have CAP_AUDIT_CONTROL in the initial user namespace to 12*b75d8f38SRichard Guy Briggs write it if it has been set. It cannot be written again 13*b75d8f38SRichard Guy Briggs if AUDIT_FEATURE_LOGINUID_IMMUTABLE is enabled. It 14*b75d8f38SRichard Guy Briggs cannot be unset if AUDIT_FEATURE_ONLY_UNSET_LOGINUID is 15*b75d8f38SRichard Guy Briggs enabled. 167c585c9dSRichard Guy Briggs 177c585c9dSRichard Guy BriggsWhat: Audit Login Session ID 187c585c9dSRichard Guy BriggsDate: 2008-03-13 197c585c9dSRichard Guy BriggsKernelVersion: 2.6.25-rc7 1e0bd7550ea9 ("[PATCH] export sessionid alongside the loginuid in procfs") 207c585c9dSRichard Guy BriggsContact: linux-audit@redhat.com 217c585c9dSRichard Guy BriggsUsers: audit and login applications 227c585c9dSRichard Guy BriggsDescription: 237c585c9dSRichard Guy Briggs The /proc/$pid/sessionid pseudofile is read to get the 24*b75d8f38SRichard Guy Briggs audit login session ID of process $pid as a decimal 25*b75d8f38SRichard Guy Briggs unsigned int (%u, u32). It is set automatically, 26*b75d8f38SRichard Guy Briggs serially assigned with each new login. 277c585c9dSRichard Guy Briggs 28