cvs commit: src/etc/rc.d auditd
Robert Watson
rwatson at FreeBSD.org
Sun Sep 24 12:48:39 PDT 2006
On Sun, 24 Sep 2006, Andrey Chernov wrote:
> On Sun, Sep 24, 2006 at 05:31:04PM +0000, Robert Watson wrote:
>> rwatson 2006-09-24 17:31:04 UTC
>>
>> FreeBSD src repository
>>
>> Modified files:
>> etc/rc.d auditd
>> Log:
>> Sleep for one second after calling audit -t to give the audit daemon a
>> chance to actually terminate the audit service and exit. Otherwise, on
>> an rc.d/auditd restart, the new audit daemon instance may try to start
>> auditing while the previous session is still running. Likewise, this
>> ensures a chance for auditd to terminate the audit trail at system
>> shutdown.
>
> You can't be sure about 1 second (or any N seconds) and should choouse
> another method like pid file or pipe file or some sysctl value presence
> checking loop.
Yes, the comment you helpfully cut from my commit message in your reply said
pretty much exactly that. However, fixing this is non-trivial, and not
something that will happen by 6.2, hence the workaround.
Robert N M Watson
Computer Laboratory
University of Cambridge
More information about the cvs-src
mailing list