https://github.com/osquery/osquery logo
Join Slack
Powered by
<@UF63BUA3A> I am a bit confused as in I am not us...
# general
s
@Stefano Bonicatti I am a bit confused as in I am not using this log_result_events flag in my osquery.flags file...so why am I still getting this...
s
In the screenshot showing your .conf file, you have the 
"options"
element; in there I can see 
"log_result_events":"true"
Some flags are CLI only and should be set only via CLI when launching osquery, or via flagfile, but other flags/configurations can be set via the .conf file. There’s still a bug where we don’t properly enforce that, but the idea is that CLI only flags can be set at startup only, while configuration options can be changed and applied at runtime.
Again the 
osqueryd --help
separates those two categories.
s
okay I understood.👍 also when I run "osqueryd --help" I get no such command message...why is so..?
s
Probably osqueryd is not in your 
PATH
env var (I guess it's osquery 5.0.1). You can also use 
osqueryi --help
since that should be reachable, or simply provide the full path to the binary.
s
yes its osquery 5.0.1. and osqueryi --helps work
3 Views
Open in Slack
PreviousNext
Powered by