Status: IN
`auditctl -e 0` temporarily disables auditing and `auditctl -e 1` re-enables it at runtime.
Source: repo:entries/2026/03/04/en-documentation-red_hat_enterprise_linux-9-html-security_hardening-auditing-the.md
JSON