Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NAS-133260 / Add script to parse output of the auditd af_unix socket #3

Open
wants to merge 11 commits into
base: master
Choose a base branch
from
Open

NAS-133260 / Add script to parse output of the auditd af_unix socket #3

wants to merge 11 commits into from

Conversation

anodos325
Copy link
Contributor

This converts auditd messages into our specified log file format
for system logs and submits to syslog-ng for database insertion.

A few audit keys are also changed to correspond with event
types registered for auditd.

@anodos325 anodos325 force-pushed the simplified-monitoring-script branch from 9b22c12 to e7a33c2 Compare December 20, 2024 13:16
@anodos325 anodos325 requested a review from mgrimesix December 20, 2024 21:01
@anodos325 anodos325 force-pushed the simplified-monitoring-script branch from e7a33c2 to 08f4e0c Compare December 20, 2024 22:03
@anodos325
Add script to parse output of the auditd af_unix socket
c74bd59 
This converts auditd messages into our specified log file format
for system logs and submits to syslog-ng for database insertion.

A few audit keys are also changed to correspond with event
types registered for auditd.
@anodos325
Add systemd unit
19f4a7b
@anodos325 anodos325 force-pushed the simplified-monitoring-script branch from f7a6d93 to 19f4a7b Compare December 24, 2024 17:38
@anodos325 anodos325 mentioned this pull request Dec 24, 2024
Open
@anodos325 anodos325 changed the title Add script to parse output of the auditd af_unix socket NAS-133260 / Add script to parse output of the auditd af_unix socket Dec 24, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@billohanlon billohanlon Awaiting requested review from billohanlon

@bmeagherix bmeagherix Awaiting requested review from bmeagherix

@mgrimesix mgrimesix Awaiting requested review from mgrimesix

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@anodos325 @mgrimesix