<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!-- Created with Inkscape (http://www.inkscape.org/) -->
<svg
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:cc="http://web.resource.org/cc/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:svg="http://www.w3.org/2000/svg"
xmlns="http://www.w3.org/2000/svg"
xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
width="744.09448819"
height="1052.3622047"
id="svg2"
sodipodi:version="0.32"
inkscape:version="0.44.1"
sodipodi:docbase="/home/jdennis/doc"
sodipodi:docname="setroubleshoot_architecture.svg"
inkscape:export-filename="/home/jdennis/doc/setroubleshoot_architecture.png"
inkscape:export-xdpi="300"
inkscape:export-ydpi="300">
<defs
id="defs4">
<marker
inkscape:stockid="Arrow2Mend"
orient="auto"
refY="0.0"
refX="0.0"
id="Arrow2Mend"
style="overflow:visible;">
<path
id="path2958"
style="font-size:12.0;fill-rule:evenodd;stroke-width:0.62500000;stroke-linejoin:round;"
d="M 8.7185878,4.0337352 L -2.2072895,0.016013256 L 8.7185884,-4.0017078 C 6.9730900,-1.6296469 6.9831476,1.6157441 8.7185878,4.0337352 z "
transform="scale(0.6) rotate(180) translate(0,0)" />
</marker>
<marker
inkscape:stockid="Arrow2Send"
orient="auto"
refY="0.0"
refX="0.0"
id="Arrow2Send"
style="overflow:visible;">
<path
id="path2952"
style="font-size:12.0;fill-rule:evenodd;stroke-width:0.62500000;stroke-linejoin:round;"
d="M 8.7185878,4.0337352 L -2.2072895,0.016013256 L 8.7185884,-4.0017078 C 6.9730900,-1.6296469 6.9831476,1.6157441 8.7185878,4.0337352 z "
transform="scale(0.3) rotate(180) translate(-2.3,0)" />
</marker>
<marker
inkscape:stockid="Arrow2Mstart"
orient="auto"
refY="0.0"
refX="0.0"
id="Arrow2Mstart"
style="overflow:visible">
<path
id="path2961"
style="font-size:12.0;fill-rule:evenodd;stroke-width:0.62500000;stroke-linejoin:round"
d="M 8.7185878,4.0337352 L -2.2072895,0.016013256 L 8.7185884,-4.0017078 C 6.9730900,-1.6296469 6.9831476,1.6157441 8.7185878,4.0337352 z "
transform="scale(0.6) translate(0,0)" />
</marker>
<marker
inkscape:stockid="Arrow2Lend"
orient="auto"
refY="0.0"
refX="0.0"
id="Arrow2Lend"
style="overflow:visible;">
<path
id="path2964"
style="font-size:12.0;fill-rule:evenodd;stroke-width:0.62500000;stroke-linejoin:round;"
d="M 8.7185878,4.0337352 L -2.2072895,0.016013256 L 8.7185884,-4.0017078 C 6.9730900,-1.6296469 6.9831476,1.6157441 8.7185878,4.0337352 z "
transform="scale(1.1) rotate(180) translate(1,0)" />
</marker>
</defs>
<sodipodi:namedview
id="base"
pagecolor="#ffffff"
bordercolor="#666666"
borderopacity="1.0"
gridtolerance="10000"
guidetolerance="10"
objecttolerance="10"
inkscape:pageopacity="0.0"
inkscape:pageshadow="2"
inkscape:zoom="1.4"
inkscape:cx="375"
inkscape:cy="419.91382"
inkscape:document-units="px"
inkscape:current-layer="layer1"
showgrid="true"
inkscape:window-width="1280"
inkscape:window-height="949"
inkscape:window-x="0"
inkscape:window-y="25" />
<metadata
id="metadata7">
<rdf:RDF>
<cc:Work
rdf:about="">
<dc:format>image/svg+xml</dc:format>
<dc:type
rdf:resource="http://purl.org/dc/dcmitype/StillImage" />
</cc:Work>
</rdf:RDF>
</metadata>
<g
inkscape:label="Layer 1"
inkscape:groupmode="layer"
id="layer1">
<rect
style="fill:white;fill-opacity:1;stroke:black;stroke-width:1.42724311;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
id="rect2758"
width="139.14418"
height="40.572758"
x="240.71362"
y="166.07581" />
<text
xml:space="preserve"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
x="310.24176"
y="189.67273"
id="text2760"><tspan
sodipodi:role="line"
x="310.24176"
y="189.67273"
id="tspan2764">Kernel Auditing</tspan></text>
<rect
style="fill:white;fill-opacity:1;stroke:black;stroke-width:1.73040283;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1"
id="rect2766"
width="138.84102"
height="59.769596"
x="240.79378"
y="223.22739" />
<text
xml:space="preserve"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
x="310.16153"
y="248.92273"
id="text2768"><tspan
sodipodi:role="line"
id="tspan2770"
x="310.16153"
y="248.92273">Audit Dispatcher</tspan><tspan
sodipodi:role="line"
x="310.16153"
y="263.92273"
id="tspan2772">(audisp)</tspan></text>
<path
style="fill:none;fill-rule:evenodd;stroke:black;stroke-width:1.5;stroke-linecap:butt;stroke-linejoin:miter;marker-end:url(#Arrow2Mend);stroke-opacity:1;stroke-miterlimit:4;stroke-dasharray:none"
d="M 310.1688,283.86218 L 310.11683,318.99143"
id="path2806"
inkscape:connector-type="polyline"
inkscape:connection-start="#rect2766" />
<g
id="g4201"
transform="translate(-159.6433,49.73617)">
<rect
y="473.14365"
x="520.4248"
height="48.700901"
width="139.0085"
id="rect3006"
style="fill:white;fill-opacity:1;stroke:black;stroke-width:1.56292212;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1" />
<text
id="text3008"
y="501.96774"
x="589.73865"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
id="tspan3012"
y="501.96774"
x="589.73865"
sodipodi:role="line">Other Client</tspan></text>
</g>
<path
style="fill:none;fill-rule:evenodd;stroke:black;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="M 310.18898,207.36218 L 310.11683,223.02694"
id="path3902"
inkscape:connector-type="polyline"
inkscape:connection-start="#rect2758" />
<g
id="g4145">
<rect
y="322.72458"
x="240.36241"
height="149.27518"
width="137.8466"
id="rect2798"
style="fill:white;fill-opacity:1;stroke:black;stroke-width:2.72483349;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1" />
<text
id="text2800"
y="337.78018"
x="309.28864"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
y="337.78018"
x="309.28864"
id="tspan2802"
sodipodi:role="line">Server</tspan><tspan
id="tspan2804"
y="352.78018"
x="309.28864"
sodipodi:role="line">(setroubleshootd)</tspan></text>
<text
id="text3928"
y="434.24893"
x="309.40875"
style="font-size:8px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
id="tspan3932"
y="434.24893"
x="309.40875"
sodipodi:role="line">audit message parsing</tspan><tspan
id="tspan3938"
y="444.24893"
x="309.40875"
sodipodi:role="line">plug-in analysis</tspan><tspan
id="tspan3942"
y="454.24893"
x="309.40875"
sodipodi:role="line">persistent database</tspan><tspan
id="tspan3944"
y="464.24893"
x="309.40875"
sodipodi:role="line">client notifications</tspan></text>
<rect
y="359.90958"
x="263.54498"
height="59.516796"
width="91.481476"
id="rect3978"
style="fill:white;fill-opacity:1;stroke:black;stroke-width:1.09472203;stroke-miterlimit:4;stroke-dasharray:none;stroke-dashoffset:0;stroke-opacity:1" />
<g
transform="translate(144.2857,17.00002)"
id="g3984">
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3958"
width="10"
height="10"
x="130"
y="367.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3960"
width="10"
height="10"
x="145"
y="367.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3962"
width="10"
height="10"
x="160"
y="367.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3964"
width="10"
height="10"
x="175"
y="367.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3966"
width="10"
height="10"
x="190"
y="367.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3968"
width="10"
height="10"
x="130"
y="382.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3970"
width="10"
height="10"
x="145"
y="382.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3972"
width="10"
height="10"
x="160"
y="382.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3974"
width="10"
height="10"
x="175"
y="382.36218" />
<rect
style="fill:black;fill-opacity:1;stroke:none;stroke-width:2;stroke-miterlimit:4;stroke-dasharray:6, 6;stroke-dashoffset:0;stroke-opacity:1"
id="rect3976"
width="10"
height="10"
x="190"
y="382.36218" />
</g>
<text
id="text3980"
y="376.86612"
x="309.02496"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
y="376.86612"
x="309.02496"
id="tspan3982"
sodipodi:role="line">plug-ins</tspan></text>
</g>
<g
id="g4185"
transform="translate(-14.00001,4.999964)">
<rect
y="518.57269"
x="115.63906"
height="117.57904"
width="138.15045"
id="rect2998"
style="fill:white;fill-opacity:1;stroke:black;stroke-width:2.42096949;stroke-miterlimit:4;stroke-dasharray:none;stroke-opacity:1" />
<text
id="text3000"
y="535.78015"
x="184.8139"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
id="tspan3912"
y="535.78015"
x="184.8139"
sodipodi:role="line">Alert Client</tspan><tspan
id="tspan4183"
y="550.78015"
x="184.8139"
sodipodi:role="line">(sealert)</tspan></text>
<text
id="text3904"
y="622.19232"
x="184.13379"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
id="tspan3908"
y="622.19232"
x="184.13379"
sodipodi:role="line">alert browser</tspan></text>
<path
id="path3910"
d="M 114.50001,593.36222 L 254.5,593.36222"
style="fill:none;fill-rule:evenodd;stroke:black;stroke-width:1;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-dasharray:4, 1;stroke-dashoffset:0;stroke-opacity:1" />
<text
id="text3920"
y="565.69818"
x="184.47266"
style="font-size:8px;font-style:normal;font-weight:normal;text-align:center;text-anchor:middle;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
xml:space="preserve"><tspan
y="565.69818"
x="184.47266"
id="tspan3922"
sodipodi:role="line">server communications</tspan><tspan
id="tspan3924"
y="575.69818"
x="184.47266"
sodipodi:role="line">desktop notifications</tspan><tspan
id="tspan3926"
y="585.69818"
x="184.47266"
sodipodi:role="line" /></text>
<path
id="path4062"
d="M 184.5,582.04258 C 184.5,604.68187 184.5,604.68187 184.5,604.68187"
style="fill:none;fill-rule:evenodd;stroke:black;stroke-width:1.19666159px;stroke-linecap:butt;stroke-linejoin:miter;marker-start:url(#Arrow2Mstart);marker-end:url(#Arrow2Mend);stroke-opacity:1" />
</g>
<path
style="fill:none;fill-rule:evenodd;stroke:black;stroke-width:1.5;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;marker-start:url(#Arrow2Mstart);marker-end:url(#Arrow2Mend);stroke-miterlimit:4;stroke-dasharray:none"
d="M 252.27104,473.36217 L 215.51158,522.36217"
id="path4206"
inkscape:connector-type="polyline"
inkscape:connection-start="#g4145"
inkscape:connection-end="#g4185" />
<path
style="fill:none;fill-rule:evenodd;stroke:black;stroke-width:1.5;stroke-linecap:butt;stroke-linejoin:miter;marker-start:url(#Arrow2Mstart);marker-end:url(#Arrow2Mend);stroke-opacity:1;stroke-miterlimit:4;stroke-dasharray:none"
d="M 354.05718,472.88806 L 429.91778,520.7118"
id="path5093"
inkscape:connector-type="polyline" />
<text
xml:space="preserve"
style="font-size:12px;font-style:normal;font-weight:normal;text-align:start;text-anchor:start;fill:black;fill-opacity:1;stroke:none;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1;font-family:Bitstream Vera Sans"
x="270.30273"
y="601.47937"
id="text5095"><tspan
sodipodi:role="line"
id="tspan5097"
x="270.30273"
y="601.47937">Each box represents a seperate</tspan><tspan
sodipodi:role="line"
x="270.30273"
y="616.47937"
id="tspan5099">process. Each arrow represents</tspan><tspan
sodipodi:role="line"
x="270.30273"
y="631.47937"
id="tspan5101">socket data flow</tspan></text>
</g>
</svg>
