Find out if journald has a key configured and uses forward secure sealing (FSS)?

Jochen

3/25/23, 10:44 AM

Calling journalctl --setup-keys creates a new key pair for Forward Secure Sealing (FSS). How can I check if this was done on a system without generating those keys if it has not happened yet?

Alternatively, since this process creates the key in file fss in the journal directory, how can I find this directory, since it contains some "arbitrary" hash, e.g. /var/log/journal/3c726bc3b46e1333bb57fa1857efcf35?

0 + 0

systemd

journald

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Find out if journald has a key configured and uses forward secure sealing (FSS)?

TH: ค้นหาว่า Journald มีการกำหนดค่าคีย์และใช้การปิดผนึกความปลอดภัยล่วงหน้า (FSS) หรือไม่

RO: Aflați dacă journald are o cheie configurată și folosește sigilarea securizată (FSS)?

RU: Выясните, настроен ли для journald ключ и используется ли прямая безопасная герметизация (FSS)?

VI: Tìm hiểu xem tạp chí có cấu hình khóa và sử dụng niêm phong an toàn chuyển tiếp (FSS) không?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.