I’m trying to achieve logging all commands, by following the instructions of this site. http://whmcr.com/2011/10/14/auditd-logging-all-commands/
I’ve installed auditd package from squeeze repository. And performed the following command:
$ sudo auditctl -a exit,alway -F arch=b64 -S all
Error sending add rule request (Operation not supported)
Unfortunately I’m getting an error.
Can someone help me how I can add support for this operation?