[logs] OS Audit Log System Configuration

• Previous message: Brown, James (Jim): "RE: [logs] High Network Load"
• In reply to: Brown, James (Jim): "RE: [logs] High Network Load"
• Next in thread: Rainer Gerhards: "RE: [logs] High Network Load"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I have been wondering if anyone knows of, or has documented all aspects of
the system security audit/logging for one or more operating systems?  This
would be for the benefit of everyone else using that OS and how to best
configure it for audit and logging.
 
In this I am hoping the details included in the documentation would identify
the OS, version, specific software/tools used (if any beyond the stock OS
itself), configuration details of the OS, configuration details of the
audit/logging software/tools, detailed meanings and understandings of each
audit configuration detail (such as flags, etc...).
 
Alternatively, I'm seeking advice on this from those with experience in this
area.
 
Thanks in advance for your time and information.
 
R,
-Joe Wulf
 ProSync Technology Group, LLC
 
 





_______________________________________________
LogAnalysis mailing list
LogAnalysis@private
http://lists.shmoo.com/mailman/listinfo/loganalysis

• Next message: Jim Shaw: "OT: RE: [logs] Strange Pix message"
• Previous message: Brown, James (Jim): "RE: [logs] High Network Load"
• In reply to: Brown, James (Jim): "RE: [logs] High Network Load"
• Next in thread: Rainer Gerhards: "RE: [logs] High Network Load"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Sep 22 2003 - 16:30:55 PDT