projects / linux-drm-fsl-dcu.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a17b4ad) | patch
[PATCH] audit config lockdown
authorSteve Grubb <sgrubb redhat com>
Fri, 19 Jan 2007 19:39:55 +0000 (14:39 -0500)
committerAl Viro <viro@zeniv.linux.org.uk>
Sun, 18 Feb 2007 02:30:12 +0000 (21:30 -0500)
commit6a01b07fae482f9b34491b317056c89d3b96ca2e
treeb3e80a8147101db29dcc18596ea20b1fcbeef6adtree | snapshot
parenta17b4ad778e1857944f5a1df95fb7758cd5cc58dcommit | diff
[PATCH] audit config lockdown

The following patch adds a new mode to the audit system. It uses the
audit_enabled config option to introduce the idea of audit enabled, but
configuration is immutable. Any attempt to change the configuration
while in this mode is audited. To change the audit rules, you'd need to
reboot the machine.

To use this option, you'd need a modified version of auditctl and use "-e 2".
This is intended to go at the end of the audit.rules file for people that
want an immutable configuration.

This patch also adds "res=" to a number of configuration commands that did not
have it before.

Signed-off-by: Steve Grubb <sgrubb@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
kernel/audit.c diff | blob | history
Freescale DCU DRM driver