Date: Sun, 24 Sep 2006 20:48:38 +0100 (BST) From: Robert Watson <rwatson@FreeBSD.org> To: Andrey Chernov <ache@FreeBSD.ORG> Cc: cvs-src@FreeBSD.ORG, src-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc/rc.d auditd Message-ID: <20060924204729.V42437@fledge.watson.org> In-Reply-To: <20060924183727.GA7823@nagual.pp.ru> References: <200609241731.k8OHV5mZ053132@repoman.freebsd.org> <20060924183727.GA7823@nagual.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 24 Sep 2006, Andrey Chernov wrote: > On Sun, Sep 24, 2006 at 05:31:04PM +0000, Robert Watson wrote: >> rwatson 2006-09-24 17:31:04 UTC >> >> FreeBSD src repository >> >> Modified files: >> etc/rc.d auditd >> Log: >> Sleep for one second after calling audit -t to give the audit daemon a >> chance to actually terminate the audit service and exit. Otherwise, on >> an rc.d/auditd restart, the new audit daemon instance may try to start >> auditing while the previous session is still running. Likewise, this >> ensures a chance for auditd to terminate the audit trail at system >> shutdown. > > You can't be sure about 1 second (or any N seconds) and should choouse > another method like pid file or pipe file or some sysctl value presence > checking loop. Yes, the comment you helpfully cut from my commit message in your reply said pretty much exactly that. However, fixing this is non-trivial, and not something that will happen by 6.2, hence the workaround. Robert N M Watson Computer Laboratory University of Cambridge
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060924204729.V42437>