Actions
Feature #43011
openCephFS audit feature
Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
% Done:
0%
Source:
Tags:
Backport:
Reviewed:
Affected Versions:
Pull request ID:
Description
I want to log all (or subtree) operations made in Cephfs. I mean file/dir creation,removal,opening. I know MDS (or MDSes is multimds enabled) know everything about all these actions.
Ther is approach using auditd-like daemons, but unfortunately, it requires to run such a daemon on every host/container/VM. This approach is not always appropriate, especially when you don't control exact usage of auth key given to someone. Also, this method does not able to catch CephFS access through libcephfs.
I think, if set up, MDS may just log chosen action to a separate log file.
No data to display
Actions