1*1dd34cfcSRichard Guy BriggsWhat: Audit Login UID 2*1dd34cfcSRichard Guy BriggsDate: 2005-02-01 3*1dd34cfcSRichard Guy BriggsKernelVersion: 2.6.11-rc2 1e2d1492e178 ("[PATCH] audit: handle loginuid through proc") 4*1dd34cfcSRichard Guy BriggsContact: linux-audit@redhat.com 5*1dd34cfcSRichard Guy BriggsFormat: %u 6*1dd34cfcSRichard Guy BriggsUsers: audit and login applications 7*1dd34cfcSRichard Guy BriggsDescription: 8*1dd34cfcSRichard Guy Briggs The /proc/$pid/loginuid pseudofile is written to set and 9*1dd34cfcSRichard Guy Briggs read to get the audit login UID of process $pid. If it is 10*1dd34cfcSRichard Guy Briggs unset, permissions are not needed to set it. The accessor must 11*1dd34cfcSRichard Guy Briggs have CAP_AUDIT_CONTROL in the initial user namespace to write 12*1dd34cfcSRichard Guy Briggs it if it has been set. It cannot be written again if 13*1dd34cfcSRichard Guy Briggs AUDIT_FEATURE_LOGINUID_IMMUTABLE is enabled. It cannot be 14*1dd34cfcSRichard Guy Briggs unset if AUDIT_FEATURE_ONLY_UNSET_LOGINUID is enabled. 15*1dd34cfcSRichard Guy Briggs 16