Change signal protection default to audit?

[awandke]

Currently, the signal protections default to blocking non-termination signals. See policy.md.

this is complex and can cause issues, such as blocking systemctl stop from working properly.

Since many processes expect signals and killing a process with a signal is not a very sophisticated attack, perhaps it is better to change the default signal protection to "audit" on "0x0" or all signals.