From 91df831a62a54b39f74356a0c9a1fdab5050eccc Mon Sep 17 00:00:00 2001 From: Jason Dellaluce Date: Thu, 23 Jun 2022 09:16:57 +0000 Subject: [PATCH] update(falco.yaml): update default configuration and its comments Signed-off-by: Jason Dellaluce --- falco.yaml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/falco.yaml b/falco.yaml index e7ef2b7596c..57379a8dfc9 100644 --- a/falco.yaml +++ b/falco.yaml @@ -211,9 +211,10 @@ file_output: stdout_output: enabled: true -# Falco contains an embedded webserver that can be used to accept K8s -# Audit Events. These config options control the behavior of that -# webserver. (By default, the webserver is enabled). +# Falco contains an embedded webserver that is used to implement an health +# endpoint for checking if Falco is up and running. These config options control +# the behavior of that webserver. By default, the webserver is enabled and +# the endpoint is /healthz. # # The ssl_certificate is a combination SSL Certificate and corresponding # key contained in a single file. You can generate a key/cert as follows: @@ -221,11 +222,10 @@ stdout_output: # $ openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out certificate.pem # $ cat certificate.pem key.pem > falco.pem # $ sudo cp falco.pem /etc/falco/falco.pem -# -# It also exposes a healthy endpoint that can be used to check if Falco is up and running -# By default the endpoint is /healthz webserver: enabled: true + # when threadiness is 0, Falco automatically guesses it depending on the number of online cores + threadiness: 0 listen_port: 8765 k8s_healthz_endpoint: /healthz ssl_enabled: false