Process Monitor

ASL includes a process monitor to ensure that services configured to run by the chkconfig or systemctl systems continue to run. If a service dies, ASL will automatically restart the process.

Adding services to monitor

To add a service, simply enable it via chkconfig or systemctl and then generate the ASL policy for the systems current start. The following steps will do this:

Step 1: enable a service

As the root user, run the command:

systemctl enable <servicename>

Example:

systemctl enable httpd

Step 2: Generate the ASL policy

asl -s -f

And you're done.

Removing services to monitor

To remove a service, simply disable it via chkconfig or systemctl and then generate the ASL policy for the systems current start. The following steps will do this:

Step 1: enable a service

As the root user, run the command:

systemctl disable <servicename>

Example:

systemctl disable httpd

Step 2: Generate the ASL policy

asl -s -f

And you're done.

Disabling PSMON

Note: It is not recommended that you disable the process monitor. Doing so will also tell ASL to not monitor its own services, and if a service fails for any reason ASL will not restart the service.

1) edit /etc/asl/config, set the following:

PSMON_ENABLED="no"

2) Update the security policy:

asl -s -f

3) kill the psmon process(es):

killall -9 psmon

4) Remove the packaage:

rpm -e psmon --nodeps