17c478bd9Sstevel@tonic-gate<?xml version="1.0"?> 27c478bd9Sstevel@tonic-gate<!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1"> 37c478bd9Sstevel@tonic-gate<!-- 4d670ce0bSMarek Pospisil Copyright 2009 Sun Microsystems, Inc. All rights reserved. 57c478bd9Sstevel@tonic-gate Use is subject to license terms. 67c478bd9Sstevel@tonic-gate 77c478bd9Sstevel@tonic-gate CDDL HEADER START 87c478bd9Sstevel@tonic-gate 97c478bd9Sstevel@tonic-gate The contents of this file are subject to the terms of the 10d670ce0bSMarek Pospisil Common Development and Distribution License (the "License"). 11d670ce0bSMarek Pospisil You may not use this file except in compliance with the License. 127c478bd9Sstevel@tonic-gate 137c478bd9Sstevel@tonic-gate You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 147c478bd9Sstevel@tonic-gate or http://www.opensolaris.org/os/licensing. 157c478bd9Sstevel@tonic-gate See the License for the specific language governing permissions 167c478bd9Sstevel@tonic-gate and limitations under the License. 177c478bd9Sstevel@tonic-gate 187c478bd9Sstevel@tonic-gate When distributing Covered Code, include this CDDL HEADER in each 197c478bd9Sstevel@tonic-gate file and include the License file at usr/src/OPENSOLARIS.LICENSE. 207c478bd9Sstevel@tonic-gate If applicable, add the following below this CDDL HEADER, with the 217c478bd9Sstevel@tonic-gate fields enclosed by brackets "[]" replaced with your own identifying 227c478bd9Sstevel@tonic-gate information: Portions Copyright [yyyy] [name of copyright owner] 237c478bd9Sstevel@tonic-gate 247c478bd9Sstevel@tonic-gate CDDL HEADER END 257c478bd9Sstevel@tonic-gate 267c478bd9Sstevel@tonic-gate NOTE: This service manifest is not editable; its contents will 277c478bd9Sstevel@tonic-gate be overwritten by package or patch operations, including 287c478bd9Sstevel@tonic-gate operating system upgrade. Make customizations in a different 297c478bd9Sstevel@tonic-gate file. 307c478bd9Sstevel@tonic-gate--> 317c478bd9Sstevel@tonic-gate 327c478bd9Sstevel@tonic-gate<service_bundle type='manifest' name='SUNWcsr:auditd'> 337c478bd9Sstevel@tonic-gate 347c478bd9Sstevel@tonic-gate<service 357c478bd9Sstevel@tonic-gate name='system/auditd' 367c478bd9Sstevel@tonic-gate type='service' 377c478bd9Sstevel@tonic-gate version='1'> 387c478bd9Sstevel@tonic-gate 397c478bd9Sstevel@tonic-gate <single_instance /> 407c478bd9Sstevel@tonic-gate 417c478bd9Sstevel@tonic-gate <dependency 427c478bd9Sstevel@tonic-gate name='usr' 437c478bd9Sstevel@tonic-gate type='service' 447c478bd9Sstevel@tonic-gate grouping='require_all' 457c478bd9Sstevel@tonic-gate restart_on='none'> 467c478bd9Sstevel@tonic-gate <service_fmri value='svc:/system/filesystem/local' /> 477c478bd9Sstevel@tonic-gate </dependency> 487c478bd9Sstevel@tonic-gate 497c478bd9Sstevel@tonic-gate <dependency 507c478bd9Sstevel@tonic-gate name='ns' 517c478bd9Sstevel@tonic-gate type='service' 527c478bd9Sstevel@tonic-gate grouping='require_all' 537c478bd9Sstevel@tonic-gate restart_on='none'> 547c478bd9Sstevel@tonic-gate <service_fmri value='svc:/milestone/name-services' /> 557c478bd9Sstevel@tonic-gate </dependency> 567c478bd9Sstevel@tonic-gate 577c478bd9Sstevel@tonic-gate <dependency 587c478bd9Sstevel@tonic-gate name='syslog' 597c478bd9Sstevel@tonic-gate type='service' 60d670ce0bSMarek Pospisil grouping='optional_all' 617c478bd9Sstevel@tonic-gate restart_on='none'> 627c478bd9Sstevel@tonic-gate <service_fmri value='svc:/system/system-log' /> 637c478bd9Sstevel@tonic-gate </dependency> 647c478bd9Sstevel@tonic-gate 657c478bd9Sstevel@tonic-gate <dependent 667c478bd9Sstevel@tonic-gate name='auditd_multi-user' 677c478bd9Sstevel@tonic-gate grouping='optional_all' 687c478bd9Sstevel@tonic-gate restart_on='none'> 697c478bd9Sstevel@tonic-gate <service_fmri value='svc:/milestone/multi-user'/> 707c478bd9Sstevel@tonic-gate </dependent> 717c478bd9Sstevel@tonic-gate 727c478bd9Sstevel@tonic-gate <dependent 737c478bd9Sstevel@tonic-gate name='console-login' 747c478bd9Sstevel@tonic-gate grouping='optional_all' 757c478bd9Sstevel@tonic-gate restart_on='none'> 767c478bd9Sstevel@tonic-gate <service_fmri value='svc:/system/console-login'/> 777c478bd9Sstevel@tonic-gate </dependent> 787c478bd9Sstevel@tonic-gate 797c478bd9Sstevel@tonic-gate <exec_method 807c478bd9Sstevel@tonic-gate type='method' 817c478bd9Sstevel@tonic-gate name='start' 827c478bd9Sstevel@tonic-gate exec='/lib/svc/method/svc-auditd' 837c478bd9Sstevel@tonic-gate timeout_seconds='15'> 847c478bd9Sstevel@tonic-gate <method_context> 857c478bd9Sstevel@tonic-gate <method_credential user='root' group='root' /> 867c478bd9Sstevel@tonic-gate </method_context> 877c478bd9Sstevel@tonic-gate </exec_method> 887c478bd9Sstevel@tonic-gate 897c478bd9Sstevel@tonic-gate <exec_method 907c478bd9Sstevel@tonic-gate type='method' 917c478bd9Sstevel@tonic-gate name='refresh' 927c478bd9Sstevel@tonic-gate exec=':kill -HUP' 937c478bd9Sstevel@tonic-gate timeout_seconds='30'> 947c478bd9Sstevel@tonic-gate <method_context> 957c478bd9Sstevel@tonic-gate <method_credential user='root' group='root' /> 967c478bd9Sstevel@tonic-gate </method_context> 977c478bd9Sstevel@tonic-gate </exec_method> 987c478bd9Sstevel@tonic-gate 997c478bd9Sstevel@tonic-gate <!-- 1007c478bd9Sstevel@tonic-gate auditd waits for c2audit to quiet down after catching a 1017c478bd9Sstevel@tonic-gate -TERM before exiting; auditd's timeout is 20 seconds 1027c478bd9Sstevel@tonic-gate --> 1037c478bd9Sstevel@tonic-gate 1047c478bd9Sstevel@tonic-gate <exec_method 1057c478bd9Sstevel@tonic-gate type='method' 1067c478bd9Sstevel@tonic-gate name='stop' 1077c478bd9Sstevel@tonic-gate exec=':kill -TERM' 1087c478bd9Sstevel@tonic-gate timeout_seconds='30'> 1097c478bd9Sstevel@tonic-gate <method_context> 1107c478bd9Sstevel@tonic-gate <method_credential user='root' group='root' /> 1117c478bd9Sstevel@tonic-gate </method_context> 1127c478bd9Sstevel@tonic-gate </exec_method> 1137c478bd9Sstevel@tonic-gate 1147c478bd9Sstevel@tonic-gate <!-- SIGs HUP, TERM, and USR1 are all expected by auditd --> 1157c478bd9Sstevel@tonic-gate 1167c478bd9Sstevel@tonic-gate <property_group name='startd' type='framework'> 1177c478bd9Sstevel@tonic-gate <propval name='ignore_error' type='astring' 1187c478bd9Sstevel@tonic-gate value='core,signal' /> 1197c478bd9Sstevel@tonic-gate </property_group> 1207c478bd9Sstevel@tonic-gate 1217c478bd9Sstevel@tonic-gate <property_group name='general' type='framework'> 1227c478bd9Sstevel@tonic-gate <!-- to start stop auditd --> 1237c478bd9Sstevel@tonic-gate <propval name='action_authorization' type='astring' 1247c478bd9Sstevel@tonic-gate value='solaris.audit.config' /> 125*16f0fd39SJan Friedel <propval name='value_authorization' type='astring' 126*16f0fd39SJan Friedel value='solaris.audit.config' /> 1277c478bd9Sstevel@tonic-gate </property_group> 1287c478bd9Sstevel@tonic-gate 1297c478bd9Sstevel@tonic-gate <instance name='default' enabled='false' /> 1307c478bd9Sstevel@tonic-gate 1317c478bd9Sstevel@tonic-gate <stability value='Evolving' /> 1327c478bd9Sstevel@tonic-gate 1337c478bd9Sstevel@tonic-gate <template> 1347c478bd9Sstevel@tonic-gate <common_name> 1357c478bd9Sstevel@tonic-gate <loctext xml:lang='C'> 1367c478bd9Sstevel@tonic-gate Solaris audit daemon 1377c478bd9Sstevel@tonic-gate </loctext> 1387c478bd9Sstevel@tonic-gate </common_name> 1397c478bd9Sstevel@tonic-gate <documentation> 1407c478bd9Sstevel@tonic-gate <manpage title='auditd' 1417c478bd9Sstevel@tonic-gate section='1M' 1427c478bd9Sstevel@tonic-gate manpath='/usr/share/man'/> 1437c478bd9Sstevel@tonic-gate <manpage title='audit' 1447c478bd9Sstevel@tonic-gate section='1M' 1457c478bd9Sstevel@tonic-gate manpath='/usr/share/man'/> 1467c478bd9Sstevel@tonic-gate </documentation> 1477c478bd9Sstevel@tonic-gate </template> 1487c478bd9Sstevel@tonic-gate 1497c478bd9Sstevel@tonic-gate</service> 1507c478bd9Sstevel@tonic-gate 1517c478bd9Sstevel@tonic-gate</service_bundle> 152