Audit does not use logrotate to rotate logs. I think it does that itself. See /etc/audit/auditd.confOn Sat, Sep 04, 2010 at 01:24:33PM -0400, Mike Williams wrote:
> Any idea why one box out of three would behave differently? It is a
> worrisome difference.
Also the log can be rotated by running the auditd rc script: service auditd rotate