mirror of
https://github.com/tldr-pages/tldr.git
synced 2025-08-08 01:55:39 +02:00
39 lines
921 B
Markdown
39 lines
921 B
Markdown
|
# audit2allow
|
||
|
|
|
||
|
|
> Scan logs for messages pertaining to denied permissions.
|
||
|
|
> Generate a report of Type Enforcement (TE) rules that might allow successful operations.
|
||
|
|
> See also `audit2why`.
|
||
|
|
> More information: <https://manned.org/audit2allow>.
|
||
|
|
|
||
|
|
- Show all generated messages in audit and message logs:
|
||
|
|
|
||
|
|
`audit2allow {{[-a|--all]}}`
|
||
|
|
|
||
|
|
- Show all generated messages since last boot:
|
||
|
|
|
||
|
|
`audit2allow {{[-b|--boot]}}`
|
||
|
|
|
||
|
|
- Display detailed information around generated messages:
|
||
|
|
|
||
|
|
`audit2allow {{[-e|--explain]}}`
|
||
|
|
|
||
|
|
- Enable verbose output mode:
|
||
|
|
|
||
|
|
`audit2allow {{[-v|--verbose]}}`
|
||
|
|
|
||
|
|
- Use installed macros to generate a reference policy:
|
||
|
|
|
||
|
|
`audit2allow {{[-R|--reference]}}`
|
||
|
|
|
||
|
|
- Specify a policy file for further analysis:
|
||
|
|
|
||
|
|
`audit2allow {{[-p|--policy]}} {{path/to/policyfile}}`
|
||
|
|
|
||
|
|
- Limit analysis to messages with a type specified in `regex`:
|
||
|
|
|
||
|
|
`audit2allow {{[-t|--type]}} {{type_regex}}`
|
||
|
|
|
||
|
|
- Display help:
|
||
|
|
|
||
|
|
`audit2allow {{[-h|--help]}}`
|