I've looked at Likewise for their security auditing via fpolicy and it looks pretty good on paper. Before going down that road, though, is anyone aware of any open source tools that will grab and present the same type of data? (who attempted to read/write/delete/change security on what, when, and if it was successful)

I also wonder if anyone knows where the fpolicy data is kept? Is it kept in logs or is it only shuttled off to listeners?

Thanks.

Jeff Kennedy Qualcomm, Incorporated QCT Engineering Compute 858-651-6592