diff options
| author | Lennart Poettering <lennart@poettering.net> | 2020-04-16 12:04:03 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2020-04-17 16:05:22 +0200 |
| commit | 511e03a3eedb7613beb0ba59f98fdc1dd753aced (patch) | |
| tree | 83873fe98385be50468d79a8db29dedc84314b6e /man/journald.conf.xml | |
| parent | 3db1c62d22b8659ad0cdbbae561e07f63abf0162 (diff) | |
| download | systemd-511e03a3eedb7613beb0ba59f98fdc1dd753aced.tar.gz | |
journald: add configuration option for enabling/disabling audit during journald startup
Let's make it optional whether auditing is enabled at journald start-up
or not.
Note that this only controls whether audit is enabled/disabled in the
kernel. Either way we'll still collect the audit data if it is
generated, i.e. if some other tool enables it, we'll collect it.
Fixes: #959
Diffstat (limited to 'man/journald.conf.xml')
| -rw-r--r-- | man/journald.conf.xml | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/man/journald.conf.xml b/man/journald.conf.xml index e24c420ab0..8058f36e75 100644 --- a/man/journald.conf.xml +++ b/man/journald.conf.xml @@ -403,6 +403,18 @@ </varlistentry> <varlistentry> + <term><varname>Audit=</varname></term> + + <listitem><para>Takes a boolean value. If enabled <command>systemd-journal</command> will turn on + kernel auditing on start-up. If disabled it will turn it off. If unset it will neither enable nor + disable it, leaving the previous state unchanged. Note that this option does not control whether + <command>systemd-journald</command> collects generated audit records, it just controls whether it + tells the kernel to generate them. This means if another tool turns on auditing even if + <command>systemd-journald</command> left it off, it will still collect the generated + messages. Defaults to on.</para></listitem> + </varlistentry> + + <varlistentry> <term><varname>TTYPath=</varname></term> <listitem><para>Change the console TTY to use if |