summaryrefslogtreecommitdiffstats
path: root/net/socket.c
diff options
context:
space:
mode:
authorSteve Grubb <sgrubb redhat com>2007-01-19 20:39:55 +0100
committerAl Viro <viro@zeniv.linux.org.uk>2007-02-18 03:30:12 +0100
commit6a01b07fae482f9b34491b317056c89d3b96ca2e (patch)
treeb3e80a8147101db29dcc18596ea20b1fcbeef6ad /net/socket.c
parent[PATCH] minor update to rule add/delete messages (ver 2) (diff)
downloadlinux-6a01b07fae482f9b34491b317056c89d3b96ca2e.tar.xz
linux-6a01b07fae482f9b34491b317056c89d3b96ca2e.zip
[PATCH] audit config lockdown
The following patch adds a new mode to the audit system. It uses the audit_enabled config option to introduce the idea of audit enabled, but configuration is immutable. Any attempt to change the configuration while in this mode is audited. To change the audit rules, you'd need to reboot the machine. To use this option, you'd need a modified version of auditctl and use "-e 2". This is intended to go at the end of the audit.rules file for people that want an immutable configuration. This patch also adds "res=" to a number of configuration commands that did not have it before. Signed-off-by: Steve Grubb <sgrubb@redhat.com> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
Diffstat (limited to 'net/socket.c')
0 files changed, 0 insertions, 0 deletions