TechRepublic

How to enable and configure Auditd on CentOS 7

Figure A: The necessary packages are installed and ready to go. How to enable and configure Auditd on CentOS 7 Your email has been sent Learn how to install Auditd on ...
TechRepublic

How to monitor events on your Linux data center servers with auditd

How to monitor events on your Linux data center servers with auditd Your email has been sent The Linux Auditing System is an outstanding way for sysadmins to create a log rule for nearly every action ...
Ars Technica

auditd and logrotate

Auditd's own log rotation is pretty broken. It can only rotate by size (and not time) and does not do compression. I am trying to beat it into submission, aka get it to work with logrotate. First I do ...
Computerworld

Using OSSEC to parse auditd logs

I use OSSEC pretty regularly on Linux and Windows servers. It is incredibly useful because of its ability to parse and correlate a large number of log formats, as well as granularly react to logs ...
Ars Technica

Force log rotation - auditd specifically

Is there some way to force a daemon to rotate its logs before hitting its max log size or number of days, etc.? Specially I'm interested in auditd, but a method which can be used on any daemon which ...
Network World

Linux auditing 101

Anyone who is concerned about their Linux servers’ security, stability, and proper functioning needs to audit their systems. Auditing may include anything from logging simple Bash commands to ...