The latest is 2.7.3, released February 24, 2017.
audit-1.8-1.src.rpm need glibc-kernheaders>=3.0
audit-1.8.tar.gz need new headers
audit-1.7.18-1.src.rpm need glibc-kernheaders>=3.0
audit-1.7.18.tar.gz need new headers
audit-1.0.16-1.src.rpm need glibc-kernheaders>=2.4-9.1.95
audit-1.0.16.tar.gz need new headers
You can compile the source rpm like this:
2.8 -> 3.0 Prepare audit to realtime analysis
3.0 -> 3.1 Reactive component for IPS
svn co http://svn.fedorahosted.org/svn/audit
or browse audit code
There is a mail list to discuss the linux audit system. Please join if you have any questions or like this topic.
We have #audit on freenode
Security + Data Science
The specifications have moved to github.
A diagram showing Audit System State
A diagram of fields in common events Event Fields
Updated version of the 2007 Red Hat Summit slides about audit system and layering an IDS/IPS on it
Presentation given at Red Hat Summit 2008 about audit system and the prelude plugin
Presentation given at Red Hat Summit 2007 about audit system and layering an IDS/IPS on it
Slides from audit BoFs at SE Linux Symposium 2007
Slides from audit BoFs at SE Linux Symposium 2006
Audit System FAQ (old)