368 B
368 B
Exception
The audit rules for permission changes made with
fsetxattr are disabled by default as they can generate an
excessive amount of logs in a short period of time, especially during a
deployment.
Deployers can enable auditing for fsetxattr usage by
setting the following Ansible variable:
security_audit_DAC_fsetxattr: yes