392 B
392 B
---id: V-38558 status: opt-in tag: auditd ---
The audit rules for permission changes made with lchown
are disabled by default as they can generate an excessive amount of logs
in a short period of time, especially during a deployment.
Deployers can enable auditing for lchown
usage by
setting the following Ansible variable:
security_audit_DAC_lchown: yes