About the sisevtd daemon on the SEP Linux Agent
Article ID: 409920
Updated On:
Products
Endpoint Protection
Endpoint Security
Issue/Introduction
On RHEL 7, sisevtd daemon is missing. However, on RHEL 9 we see 5 daemons.
RHEL 7:
RHEL 9:
Environment
14.3 RU9
Resolution
The sisevtd daemon was introduced in RU9 to improve performance. This daemon uses eBPF (extended Berkeley Packet Filter).
Because eBPF is only supported on newer kernels, older kernels will continue to use Netlink.
Feedback
Yes
No
Powered by
