17c478bd9Sstevel@tonic-gate<?xml version="1.0"?> 27c478bd9Sstevel@tonic-gate<!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1"> 37c478bd9Sstevel@tonic-gate<!-- 4*d670ce0bSMarek Pospisil Copyright 2009 Sun Microsystems, Inc. All rights reserved. 57c478bd9Sstevel@tonic-gate Use is subject to license terms. 67c478bd9Sstevel@tonic-gate 77c478bd9Sstevel@tonic-gate CDDL HEADER START 87c478bd9Sstevel@tonic-gate 97c478bd9Sstevel@tonic-gate The contents of this file are subject to the terms of the 10*d670ce0bSMarek Pospisil Common Development and Distribution License (the "License"). 11*d670ce0bSMarek Pospisil You may not use this file except in compliance with the License. 127c478bd9Sstevel@tonic-gate 137c478bd9Sstevel@tonic-gate You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 147c478bd9Sstevel@tonic-gate or http://www.opensolaris.org/os/licensing. 157c478bd9Sstevel@tonic-gate See the License for the specific language governing permissions 167c478bd9Sstevel@tonic-gate and limitations under the License. 177c478bd9Sstevel@tonic-gate 187c478bd9Sstevel@tonic-gate When distributing Covered Code, include this CDDL HEADER in each 197c478bd9Sstevel@tonic-gate file and include the License file at usr/src/OPENSOLARIS.LICENSE. 207c478bd9Sstevel@tonic-gate If applicable, add the following below this CDDL HEADER, with the 217c478bd9Sstevel@tonic-gate fields enclosed by brackets "[]" replaced with your own identifying 227c478bd9Sstevel@tonic-gate information: Portions Copyright [yyyy] [name of copyright owner] 237c478bd9Sstevel@tonic-gate 247c478bd9Sstevel@tonic-gate CDDL HEADER END 257c478bd9Sstevel@tonic-gate 267c478bd9Sstevel@tonic-gate NOTE: This service manifest is not editable; its contents will 277c478bd9Sstevel@tonic-gate be overwritten by package or patch operations, including 287c478bd9Sstevel@tonic-gate operating system upgrade. Make customizations in a different 297c478bd9Sstevel@tonic-gate file. 307c478bd9Sstevel@tonic-gate--> 317c478bd9Sstevel@tonic-gate 327c478bd9Sstevel@tonic-gate<service_bundle type='manifest' name='SUNWcsr:auditd'> 337c478bd9Sstevel@tonic-gate 347c478bd9Sstevel@tonic-gate<service 357c478bd9Sstevel@tonic-gate name='system/auditd' 367c478bd9Sstevel@tonic-gate type='service' 377c478bd9Sstevel@tonic-gate version='1'> 387c478bd9Sstevel@tonic-gate 397c478bd9Sstevel@tonic-gate <single_instance /> 407c478bd9Sstevel@tonic-gate 417c478bd9Sstevel@tonic-gate <dependency 427c478bd9Sstevel@tonic-gate name='usr' 437c478bd9Sstevel@tonic-gate type='service' 447c478bd9Sstevel@tonic-gate grouping='require_all' 457c478bd9Sstevel@tonic-gate restart_on='none'> 467c478bd9Sstevel@tonic-gate <service_fmri value='svc:/system/filesystem/local' /> 477c478bd9Sstevel@tonic-gate </dependency> 487c478bd9Sstevel@tonic-gate 497c478bd9Sstevel@tonic-gate <dependency 507c478bd9Sstevel@tonic-gate name='ns' 517c478bd9Sstevel@tonic-gate type='service' 527c478bd9Sstevel@tonic-gate grouping='require_all' 537c478bd9Sstevel@tonic-gate restart_on='none'> 547c478bd9Sstevel@tonic-gate <service_fmri value='svc:/milestone/name-services' /> 557c478bd9Sstevel@tonic-gate </dependency> 567c478bd9Sstevel@tonic-gate 577c478bd9Sstevel@tonic-gate <dependency 587c478bd9Sstevel@tonic-gate name='syslog' 597c478bd9Sstevel@tonic-gate type='service' 60*d670ce0bSMarek Pospisil grouping='optional_all' 617c478bd9Sstevel@tonic-gate restart_on='none'> 627c478bd9Sstevel@tonic-gate <service_fmri value='svc:/system/system-log' /> 637c478bd9Sstevel@tonic-gate </dependency> 647c478bd9Sstevel@tonic-gate 657c478bd9Sstevel@tonic-gate <dependent 667c478bd9Sstevel@tonic-gate name='auditd_multi-user' 677c478bd9Sstevel@tonic-gate grouping='optional_all' 687c478bd9Sstevel@tonic-gate restart_on='none'> 697c478bd9Sstevel@tonic-gate <service_fmri value='svc:/milestone/multi-user'/> 707c478bd9Sstevel@tonic-gate </dependent> 717c478bd9Sstevel@tonic-gate 727c478bd9Sstevel@tonic-gate <dependent 737c478bd9Sstevel@tonic-gate name='console-login' 747c478bd9Sstevel@tonic-gate grouping='optional_all' 757c478bd9Sstevel@tonic-gate restart_on='none'> 767c478bd9Sstevel@tonic-gate <service_fmri value='svc:/system/console-login'/> 777c478bd9Sstevel@tonic-gate </dependent> 787c478bd9Sstevel@tonic-gate 797c478bd9Sstevel@tonic-gate <exec_method 807c478bd9Sstevel@tonic-gate type='method' 817c478bd9Sstevel@tonic-gate name='start' 827c478bd9Sstevel@tonic-gate exec='/lib/svc/method/svc-auditd' 837c478bd9Sstevel@tonic-gate timeout_seconds='15'> 847c478bd9Sstevel@tonic-gate <method_context> 857c478bd9Sstevel@tonic-gate <method_credential user='root' group='root' /> 867c478bd9Sstevel@tonic-gate </method_context> 877c478bd9Sstevel@tonic-gate </exec_method> 887c478bd9Sstevel@tonic-gate 897c478bd9Sstevel@tonic-gate <exec_method 907c478bd9Sstevel@tonic-gate type='method' 917c478bd9Sstevel@tonic-gate name='refresh' 927c478bd9Sstevel@tonic-gate exec=':kill -HUP' 937c478bd9Sstevel@tonic-gate timeout_seconds='30'> 947c478bd9Sstevel@tonic-gate <method_context> 957c478bd9Sstevel@tonic-gate <method_credential user='root' group='root' /> 967c478bd9Sstevel@tonic-gate </method_context> 977c478bd9Sstevel@tonic-gate </exec_method> 987c478bd9Sstevel@tonic-gate 997c478bd9Sstevel@tonic-gate <!-- 1007c478bd9Sstevel@tonic-gate auditd waits for c2audit to quiet down after catching a 1017c478bd9Sstevel@tonic-gate -TERM before exiting; auditd's timeout is 20 seconds 1027c478bd9Sstevel@tonic-gate --> 1037c478bd9Sstevel@tonic-gate 1047c478bd9Sstevel@tonic-gate <exec_method 1057c478bd9Sstevel@tonic-gate type='method' 1067c478bd9Sstevel@tonic-gate name='stop' 1077c478bd9Sstevel@tonic-gate exec=':kill -TERM' 1087c478bd9Sstevel@tonic-gate timeout_seconds='30'> 1097c478bd9Sstevel@tonic-gate <method_context> 1107c478bd9Sstevel@tonic-gate <method_credential user='root' group='root' /> 1117c478bd9Sstevel@tonic-gate </method_context> 1127c478bd9Sstevel@tonic-gate </exec_method> 1137c478bd9Sstevel@tonic-gate 1147c478bd9Sstevel@tonic-gate <!-- SIGs HUP, TERM, and USR1 are all expected by auditd --> 1157c478bd9Sstevel@tonic-gate 1167c478bd9Sstevel@tonic-gate <property_group name='startd' type='framework'> 1177c478bd9Sstevel@tonic-gate <propval name='ignore_error' type='astring' 1187c478bd9Sstevel@tonic-gate value='core,signal' /> 1197c478bd9Sstevel@tonic-gate </property_group> 1207c478bd9Sstevel@tonic-gate 1217c478bd9Sstevel@tonic-gate <property_group name='general' type='framework'> 1227c478bd9Sstevel@tonic-gate <!-- to start stop auditd --> 1237c478bd9Sstevel@tonic-gate <propval name='action_authorization' type='astring' 1247c478bd9Sstevel@tonic-gate value='solaris.audit.config' /> 1257c478bd9Sstevel@tonic-gate </property_group> 1267c478bd9Sstevel@tonic-gate 1277c478bd9Sstevel@tonic-gate <instance name='default' enabled='false' /> 1287c478bd9Sstevel@tonic-gate 1297c478bd9Sstevel@tonic-gate <stability value='Evolving' /> 1307c478bd9Sstevel@tonic-gate 1317c478bd9Sstevel@tonic-gate <template> 1327c478bd9Sstevel@tonic-gate <common_name> 1337c478bd9Sstevel@tonic-gate <loctext xml:lang='C'> 1347c478bd9Sstevel@tonic-gate Solaris audit daemon 1357c478bd9Sstevel@tonic-gate </loctext> 1367c478bd9Sstevel@tonic-gate </common_name> 1377c478bd9Sstevel@tonic-gate <documentation> 1387c478bd9Sstevel@tonic-gate <manpage title='auditd' 1397c478bd9Sstevel@tonic-gate section='1M' 1407c478bd9Sstevel@tonic-gate manpath='/usr/share/man'/> 1417c478bd9Sstevel@tonic-gate <manpage title='audit' 1427c478bd9Sstevel@tonic-gate section='1M' 1437c478bd9Sstevel@tonic-gate manpath='/usr/share/man'/> 1447c478bd9Sstevel@tonic-gate </documentation> 1457c478bd9Sstevel@tonic-gate </template> 1467c478bd9Sstevel@tonic-gate 1477c478bd9Sstevel@tonic-gate</service> 1487c478bd9Sstevel@tonic-gate 1497c478bd9Sstevel@tonic-gate</service_bundle> 150