Computerworld

Using OSSEC to parse auditd logs

I use OSSEC pretty regularly on Linux and Windows servers. It is incredibly useful because of its ability to parse and correlate a large number of log formats, as well as granularly react to logs ...
TechRepublic

How to monitor events on your Linux data center servers with auditd

How to monitor events on your Linux data center servers with auditd Your email has been sent The Linux Auditing System is an outstanding way for sysadmins to create a log rule for nearly every action ...
Ars Technica

Force log rotation - auditd specifically

Is there some way to force a daemon to rotate its logs before hitting its max log size or number of days, etc.? Specially I'm interested in auditd, but a method which can be used on any daemon which ...
Network World

Linux auditing 101

Anyone who is concerned about their Linux servers’ security, stability, and proper functioning needs to audit their systems. Auditing may include anything from logging simple Bash commands to ...