lilith/tldr
1
0
Fork 0
mirror of https://github.com/tldr-pages/tldr.git synced 2025-08-05 03:55:33 +02:00
Code Activity
tldr/pages/common/audit2allow.md
Managor b969e91aed
*: fix See also: syntax (#17383)
2025-07-30 07:32:48 +03:00

922 B
Raw Permalink Blame History

audit2allow

Scan logs for messages pertaining to denied permissions. Generate a report of Type Enforcement (TE) rules that might allow successful operations. See also: audit2why. More information: https://manned.org/audit2allow.

  • Show all generated messages in audit and message logs:

audit2allow {{[-a|--all]}}

  • Show all generated messages since last boot:

audit2allow {{[-b|--boot]}}

  • Display detailed information around generated messages:

audit2allow {{[-e|--explain]}}

  • Enable verbose output mode:

audit2allow {{[-v|--verbose]}}

  • Use installed macros to generate a reference policy:

audit2allow {{[-R|--reference]}}

  • Specify a policy file for further analysis:

audit2allow {{[-p|--policy]}} {{path/to/policyfile}}

  • Limit analysis to messages with a type specified in regex:

audit2allow {{[-t|--type]}} {{type_regex}}

  • Display help:

audit2allow {{[-h|--help]}}