Stephen Smalley committed 4256b31

Enable audit by default.

Enable audit by default, including pathname collection.
Normally this would be handled from userspace via auditctl,
but patch the kernel until audit userspace becomes available.

Comments (0)

Files changed (2)

 /* Default state when kernel boots without any parameters. */
-static int	audit_default;
+static int	audit_default = 1;
 /* If auditing cannot proceed, audit_failure selects what happens. */
 static int	audit_failure = AUDIT_FAIL_PRINTK;
 #define MAX_EXECVE_AUDIT_LEN 7500
 /* number of audit rules */
-int audit_n_rules;
+int audit_n_rules = 1;
 /* determines whether we collect data for signals sent */
 int audit_signals;