After two days from installation of the NS 7RC1 as DC/AD/File server, in this morning I see this in Samba Audit window!
The update was at 03:49 AM, as @fasttech said. Nothing if I press "Reload".
I still think that is not how supposed to work the Samba Audit module.
As system administrator, I should see everything in real time.
IMO, after I have pressed "Reload", I should see also the latest actions about file sharing access, not only a refresh after a search action in this window.
Stupid question: if I change in /etc/logrotate.d/smbaudit "daily" with "minute", the update will be after every minute?
No, acording this:
only daily, weekly, monthly, yearly.
Can be used this?
Tells logrotate to force the rotation, even if it doesn’t think this is necessary. Sometimes this is useful after adding new entries to a logrotate config file, or if old log files have been removed by hand, as the new files will be created, and logging will continue correctly."
This module, as principle of operation, cannot be adapted and used for searching in other log files (email log, ...)? Except, of course, "the update". Should be in real time. Something like a trigger: when is something new in /var/log/....