forked from pool/audit
Marcus Meissner
42c1e24684
- If the system has been booted with audit=0 in the kernel cmdline auditd.service must refrain from starting as the relevant kernel subsystem will be permanently disabled. add patch: auditd-donot-start-if-kernel-cmdline-disabled.patch OBS-URL: https://build.opensuse.org/request/show/244848 OBS-URL: https://build.opensuse.org/package/show/security/audit?expand=0&rev=70
21 lines
722 B
Diff
21 lines
722 B
Diff
From: Cristian Rodríguez <crrodriguez@opensuse.org>
|
|
Subject: If the audit subsystem is disabled in the cmdline, do not start service
|
|
Date: Fri Aug 15 14:17:53 UTC 2014
|
|
Upstream: Not yet , submitted Aug 14 2014
|
|
Signed-Off-by: Cristian Rodríguez <crrodriguez@opensuse.org>
|
|
|
|
If the system is booted with audit=0 in the kernel command line
|
|
the service must not be started as the audit subsystem is permanently
|
|
disabled until next boot.
|
|
|
|
--- audit-2.3.6.orig/init.d/auditd.service
|
|
+++ audit-2.3.6/init.d/auditd.service
|
|
@@ -4,6 +4,7 @@ DefaultDependencies=no
|
|
After=local-fs.target
|
|
Conflicts=shutdown.target
|
|
Before=sysinit.target shutdown.target
|
|
+ConditionKernelCommandLine=!audit=0
|
|
|
|
[Service]
|
|
ExecStart=/sbin/auditd -n
|