9.1.4.5. Content of Audit RecordsΒΆ

The Linux audit daemon contains event type, date/time, host, and outcome of events by default. Each event type has a varying level of detail depending on the audited action. The auditd documentation should be referred to for the event types.

References: AU-3 : CONTENT OF AUDIT RECORDS