BestHub
search
Sign in
Tag

auditd

1 views collected around this technical thread.

Efficient Ops
Efficient Ops
Mar 3, 2021 · Information Security

How to Efficiently Audit Linux System Operations Without Overloading Logs

This article explains why detailed system operation logs are essential for security audits and troubleshooting, outlines filtering guidelines to avoid noisy data, and compares five Linux auditing methods—history, custom bash, snoopy, auditd, and eBPF—highlighting their strengths, limitations, and practical configuration examples.

LinuxLoggingaudit
0 likes · 13 min read
How to Efficiently Audit Linux System Operations Without Overloading Logs
Efficient Ops
Efficient Ops
Nov 19, 2020 · Information Security

How to Efficiently Audit Linux System Operations: Tools, Tips, and Filtering Rules

This article explains why detailed system operation logs are essential for security audits and troubleshooting, outlines practical filtering guidelines, and compares five Linux auditing methods—history, custom bash, snoopy, auditd, and eBPF—highlighting their strengths, limitations, and usage examples.

Linux auditingSecurityauditd
0 likes · 13 min read
How to Efficiently Audit Linux System Operations: Tools, Tips, and Filtering Rules