FS#56625 - [linux] 4.14.4-2 enables audit subsystem

Attached to Project: Arch Linux
Opened by loqs (loqs) - Thursday, 07 December 2017, 23:49 GMT
Last edited by Doug Newgard (Scimmia) - Friday, 08 December 2017, 16:49 GMT
Task Type Bug Report
Category Packages: Testing
Status Closed
Assigned To Tobias Powalowski (tpowa)
Jan Alexander Steffens (heftig)
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
4.14.4-2 set CONFIG_AUDIT=y possibly for [PATCH] add sysctl to disallow unprivileged CLONE_NEWUSER by default?
unlike the linux-hardened kernel which also does this it has not set
CONFIG_CMDLINE_BOOL=y
CONFIG_CMDLINE="audit=0"
to disable the use of the audit subsystem as the subsystem can generate a large amount of journal entries.

This task depends upon

Closed by  Doug Newgard (Scimmia)
Friday, 08 December 2017, 16:49 GMT
Reason for closing:  Fixed
Additional comments about closing:  linux 4.14.4-3

Loading...