I was wondering besides the typical cron/authpriv inherent to linux, and stig audit.d rules does anyone have rsyslog and audit configurations they like for linux host logging?

------------------------------
Alfonso Lalumia
------------------------------

I found this post helpful: https://gist.github.com/Neo23x0/9fe88c0c5979e017a389b90fd19ddfee.

------------------------------
Jonatan Bucko
------------------------------

Original Message:
Sent: Tue August 20, 2019 02:41 PM
From: hostcontext restart
Subject: linux audit.d rsyslog conf recommendations

I was wondering besides the typical cron/authpriv inherent to linux, and stig audit.d rules does anyone have rsyslog and audit configurations they like for linux host logging?

------------------------------
Alfonso Lalumia
------------------------------