Logging

Creating audit trails – Logging commands on Linux with Snoopy

audit
auditing
logging

Snoopy is a useful utility to log commands on Linux and create a related audit trail. Auditing trails are considered to be important for proper accounting.

Linux security: Reviewing log files

audit
log file

Log files are the precious collection of system events. Still many people don't really use them, until it is really needed. Let's change that!

Linux audit: Log files in /var/log/audit

audit
auditd
auditd.conf
rsyslog

This article describes the purpose of the audit.log file in /var/log/audit and the relationship with the Linux audit framework.

Configuration and collecting of Linux audit events

audit
events
logging
rsyslog

Guide to setup central audit logging for your Linux based systems, with the use of the powerful Linux audit framework. No single audit log should get lost!

Linux audit log: dealing with audit.log file

audit

Article to deal with the Linux audit log file and how to use it. Including tips to search events and safeguard it against unintended alteration of the log.