IBM Security QRadar

 View Only
Expand all | Collapse all

linux audit.d rsyslog conf recommendations

  • 1.  linux audit.d rsyslog conf recommendations

    Posted Tue August 20, 2019 02:41 PM
    I was wondering besides the typical cron/authpriv inherent to linux, and stig audit.d rules does anyone have rsyslog and audit configurations they like for linux host logging?

    ------------------------------
    Alfonso Lalumia
    ------------------------------


  • 2.  RE: linux audit.d rsyslog conf recommendations

    Posted Wed August 21, 2019 08:41 AM
    I found this post helpful: https://gist.github.com/Neo23x0/9fe88c0c5979e017a389b90fd19ddfee.





    ------------------------------
    Jonatan Bucko
    ------------------------------