Don't enable audit by default

It causes flooding of dmesg and syslog, suppressing actually important
messages.

Don't enable it for now, until a better solution is found:
http://lists.freedesktop.org/archives/systemd-devel/2014-December/026591.html

Bug-Debian: https://bugs.debian.org/773528

Gbp-Pq: Topic debian
Gbp-Pq: Name Don-t-enable-audit-by-default.patch

diff --git a/man/journald.conf.xml b/man/journald.conf.xml
index f712f5802af6dc30e419e79743fcd3223a13c337..fc8126e0d4d810b9a90b906180c7976db09d76a4 100644 (file)
--- a/man/journald.conf.xml
+++ b/man/journald.conf.xml
@@ -411,7 +411,7 @@
         <command>systemd-journald</command> collects generated audit records, it just controls whether it
         tells the kernel to generate them. This means if another tool turns on auditing even if
         <command>systemd-journald</command> left it off, it will still collect the generated
-        messages. Defaults to on.</para></listitem>
+        messages. Defaults to off.</para></listitem>
       </varlistentry>
 
       <varlistentry>

diff --git a/src/journal/journald-server.c b/src/journal/journald-server.c
index 1210994f8d4bd5254f2d28680be9066b31bf085b..03687072c5db801c9437280836e8a833bd902f72 100644 (file)
--- a/src/journal/journald-server.c
+++ b/src/journal/journald-server.c
@@ -2214,7 +2214,7 @@ int server_init(Server *s, const char *namespace) {
                 .compress.threshold_bytes = (uint64_t) -1,
                 .seal = true,
 
-                .set_audit = true,
+                .set_audit = false,
 
                 .watchdog_usec = USEC_INFINITY,
 

diff --git a/src/journal/journald.conf b/src/journal/journald.conf
index d6cd5b151982bc6bb1b2656c76a2b6c14c7636a2..5e4b0e2a3824207aa5505eee05c8e702d1885557 100644 (file)
--- a/src/journal/journald.conf
+++ b/src/journal/journald.conf
@@ -41,4 +41,4 @@
 #MaxLevelWall=emerg
 #LineMax=48K
 #ReadKMsg=yes
-#Audit=yes
+#Audit=no