Don't enable audit by default

It causes flooding of dmesg and syslog, suppressing actually important
messages.

Don't enable it for now, until a better solution is found:
http://lists.freedesktop.org/archives/systemd-devel/2014-December/026591.html

Bug-Debian: https://bugs.debian.org/773528

Gbp-Pq: Topic debian
Gbp-Pq: Name Don-t-enable-audit-by-default.patch

diff --git a/man/journald.conf.xml b/man/journald.conf.xml
index ff5050a4909e618c0511d6cee182105e4543f32b..347de8603cc487493cb03718f3d898d63e2c23a9 100644 (file)
--- a/man/journald.conf.xml
+++ b/man/journald.conf.xml
@@ -417,7 +417,7 @@
         <command>systemd-journald</command> collects generated audit records, it just controls whether it
         tells the kernel to generate them. This means if another tool turns on auditing even if
         <command>systemd-journald</command> left it off, it will still collect the generated
-        messages. Defaults to on.</para></listitem>
+        messages. Defaults to off.</para></listitem>
       </varlistentry>
 
       <varlistentry>

diff --git a/src/journal/journald-server.c b/src/journal/journald-server.c
index c89baec34b574a57186001fbd3ad6a20bc5cf1fd..b54b4c0e8a9d8851305499263169ce7bd23890eb 100644 (file)
--- a/src/journal/journald-server.c
+++ b/src/journal/journald-server.c
@@ -2208,7 +2208,7 @@ int server_init(Server *s, const char *namespace) {
                 .compress.threshold_bytes = (uint64_t) -1,
                 .seal = true,
 
-                .set_audit = true,
+                .set_audit = false,
 
                 .watchdog_usec = USEC_INFINITY,
 

diff --git a/src/journal/journald.conf b/src/journal/journald.conf
index d6cd5b151982bc6bb1b2656c76a2b6c14c7636a2..5e4b0e2a3824207aa5505eee05c8e702d1885557 100644 (file)
--- a/src/journal/journald.conf
+++ b/src/journal/journald.conf
@@ -41,4 +41,4 @@
 #MaxLevelWall=emerg
 #LineMax=48K
 #ReadKMsg=yes
-#Audit=yes
+#Audit=no