e58ae245ad
This patch disables martian packet logging and updates the documentation to reflect the new default. A release note is also included to make deployers aware of the change. Closes-bug: 1619039 Change-Id: I4b19aa1200298a92c85824e319bb919260e5a6d0
14 lines
388 B
YAML
14 lines
388 B
YAML
---
|
|
features:
|
|
- |
|
|
Although the STIG requires martian packets to be logged, the logging is
|
|
now disabled by default. The logs can quickly fill up a syslog server or
|
|
make a physical console unusable.
|
|
|
|
Deployers that need this logging enabled will need to set the following
|
|
Ansible variable:
|
|
|
|
.. code-block:: yaml
|
|
|
|
security_sysctl_enable_martian_logging: yes
|