Chapter 7. Auditing
Auditing and logging provide a historical record of what happened on the system. Auditing can provide accountability by tracing the actions of a user or process. It can state what commands were executed, what files were opened, and when the actions occurred. Logging provides a record of what a daemon did. This record can include basic logging information, such as when a connection was served, or include detailed diagnostic information for debugging. Remember that audit trails and logs are useless if they are never reviewed.
Auditing Overview and Basic Procedures
The SunSHIELD Basic Security Module (BSM) provides auditing capabilities at a granular level. This capability was added to meet the C2 level of the Trusted Computer System ...
Get Secure Shell in the Enterprise now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.