Prateek Kumar Nischal
10/06/2020, 4:34 PMevents_max=50000
which I don’t think is very tightly related with audit logs.
I don’t have any immediate optimisations to keep the cpu under control and I don’t want to move the watchdog to level -1 (i.e. unbounded). Is there something i can do with this. I am fine for now to drop a few events (I know auditd does that) if there are too many events.alessandrogario
10/06/2020, 4:56 PMPrateek Kumar Nischal
10/06/2020, 5:33 PM