From b16a15f8873f9b39c789fe596a949aa3eeb7181f Mon Sep 17 00:00:00 2001 From: Thiago Canozzo Lahr Date: Tue, 7 Jan 2025 08:36:07 -0300 Subject: [PATCH] artif: remove journalctl --verify --- CHANGELOG.md | 1 + artifacts/live_response/system/journalctl.yaml | 6 ------ 2 files changed, 1 insertion(+), 6 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 1de2abb3..a782a73f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -25,6 +25,7 @@ - live_response/storage/lsblk.yaml: Added JSON output format for listing block devices [linux] ([mnrkbys](https://github.com/mnrkbys)). - live_response/system/coredump.yaml: Added collection of core dump files information [linux] ([mnrkbys](https://github.com/mnrkbys)). - live_response/system/getcap.yaml: Added functionality to collect the list of files with associated process capabilities [linux] ([mnrkbys](https://github.com/mnrkbys)). +- live_response/system/journalctl.yaml: Added collection of listing of time periods between boots [linux] ([mnrkbys](https://github.com/mnrkbys)). - live_response/system/ulimit.yaml: Added collection of all resource limits information [all] ([mnrkbys](https://github.com/mnrkbys)). - memory_dump/coredump.yaml: Added collection of core dump, ABRT, Apport, and kdump files [esxi, linux, netbsd] ([mnrkbys](https://github.com/mnrkbys)). diff --git a/artifacts/live_response/system/journalctl.yaml b/artifacts/live_response/system/journalctl.yaml index 9e331d8e..330de7ed 100644 --- a/artifacts/live_response/system/journalctl.yaml +++ b/artifacts/live_response/system/journalctl.yaml @@ -2,12 +2,6 @@ version: 1.0 condition: command_exists "journalctl" output_directory: /live_response/system artifacts: - - - description: Verify the integrity of journal log files. - supported_os: [linux] - collector: command - command: journalctl --verify - output_file: journalctl_--verify.txt - description: Show a listing of time periods between boots. supported_os: [linux]