Hi all when it comes to the watchdog all its flags watchdog

Question

Hi all when it comes to the watchdog all its flags watchdog level enable extension watchdog etc need to be configured in the flags file Meaning i cannot configure them in the config tls endpoint am i right

seph · Answer

Maybe It s the kind of thing that needs to start before the TLS endpoint is contacted But there might be a bug about whether the config is correctly rejected

Juan Alvarez · Answer

I see slightly smiling face looking at the code it seems that as CLI FLAG it should not be configured in the TLS endpoint but if i do it does actually modify the values in `osquery flags` table so it is a bit difficult to understand what is the effective configuration Anyway it seems that the right thing to do is to modify it in the flags file

Stefano Bonicatti · Answer

There is a bug with CLI FLAG which are not correctly enforced right now as something that can only be given on the osquery CLI or flagfile

Stefano Bonicatti · Answer

You would want to respect that they are CLI FLAG though because the original intention was to make them not modifiable when osquery is already running

Stefano Bonicatti · Answer

also `osqueryd help` separates the flag between the ones that can be used on the CLI flagfile and the ones that can also be used inside the config file

Stefano Bonicatti · Answer

The bug I m talking about is <https github com osquery osquery issues 6533>

Juan Alvarez · Answer

i see cool Thank you both very much