Changeset 481 for trunk/man/samhainrc.5

Timestamp:

Jul 18, 2015, 5:06:52 PM (9 years ago)

Author:

katerina

Message:

Enhancements and fixes for tickets #374, #375, #376, #377, #378, and #379.

File:

• trunk/man/samhainrc.5 (modified) (2 diffs)

trunk/man/samhainrc.5

@@ -253 +253 @@
 by same user, and logouts.
 .TP
-.I "[Kernel]"
-Configuration for detecting kernel rootkits.
-.br
-.BI KernelCheckActive= 0|1
-Switch off/on checking of kernel syscalls to detect kernel module rootkits.
-.br
-.BI KernelCheckInterval= val
-Interval (seconds) between checks.
-.br
-.BI SeverityKernel= val
-Severity level for clobbered kernel syscalls.
-.br
-.BI KernelCheckIDT= 0|1
-Whether to check the interrrupt descriptor table.
-.br
-.BI KernelSystemCall= address
-The address of system_call (grep system_call System.map). 
-Required after a kernel update.
-.br
-.BI KernelProcRoot= address
-The address of proc_root (grep ' proc_root$' System.map).
-Required after a kernel update.
-.br
-.BI KernelProcRootIops= address 
-The address of proc_root_inode_operations 
-(grep proc_root_inode_operations System.map).
-Required after a kernel update.
-.br
-.BI KernelProcRootLookup= address 
-The address of proc_root_lookup (grep proc_root_lookup System.map).
-Required after a kernel update.
-.TP
 .I "[SuidCheck]"
 Settings for finding SUID/SGID files on disk.
@@ -473 +441 @@
 Set type of message authentication code (HMAC). 
 Must be identical on client and server. 
+.br
+.BI StartupLoadDelay= val
+Defines the interval (in seconds) to wait after startup before
+loading the databse from the server. Default is no wait.
 .br
 .BI SetLoopTime= val