lilith/tldr
1
0
Fork 0
mirror of https://github.com/tldr-pages/tldr.git synced 2025-08-05 02:35:33 +02:00
Code Activity
tldr/pages/common/audit2allow.md
Kristopher b199fb0a31
audit2allow: add page (#17208) 
Co-authored-by: Managor <42655600+Managor@users.noreply.github.com>
Co-authored-by: Dylan <145150333+dmmqz@users.noreply.github.com>
Co-authored-by: Machiavelli <145562237+MachiavelliII@users.noreply.github.com>
2025-07-24 19:02:27 +03:00

921 B
Raw Blame History

audit2allow

Scan logs for messages pertaining to denied permissions. Generate a report of Type Enforcement (TE) rules that might allow successful operations. See also audit2why. More information: https://manned.org/audit2allow.

  • Show all generated messages in audit and message logs:

audit2allow {{[-a|--all]}}

  • Show all generated messages since last boot:

audit2allow {{[-b|--boot]}}

  • Display detailed information around generated messages:

audit2allow {{[-e|--explain]}}

  • Enable verbose output mode:

audit2allow {{[-v|--verbose]}}

  • Use installed macros to generate a reference policy:

audit2allow {{[-R|--reference]}}

  • Specify a policy file for further analysis:

audit2allow {{[-p|--policy]}} {{path/to/policyfile}}

  • Limit analysis to messages with a type specified in regex:

audit2allow {{[-t|--type]}} {{type_regex}}

  • Display help:

audit2allow {{[-h|--help]}}