Working with ausearch and aureport to analyse audit logs on a RHEL system. Continue reading
Tag Archives: auditd
Configure Audit Service to Send Audit Messages to Another Server
The auditd service does not include the ability to send audit records to a centralised server for management directly. It does include a plug-in for audit event multiplexor to pass audit records to a remote syslog server. Continue reading