```# cat /etc/osquery/osquery.flags
--audit_allow_...
# generalt
Tyler Fisher
01/02/2020, 10:27 PM Copy code
# cat /etc/osquery/osquery.flags
--audit_allow_config=true
--audit_allow_sockets
--audit_persist=true
--audit_allow_process_events=true
--disable_audit=false
--disable_events=false
--events_max=500000
--logger_min_status=1
--logger_plugin=filesystem
--watchdog_memory_limit=350
--watchdog_utilization_limit=130