I am currently runnig hp-ux v11.3. I have enabled auditing and I am able to send the audit events to a text file in syslog format using the following command:
I am required to send the audit events to the SIEM appliance using syslog.
Kindly guide me on what I need to do to achieve the following:
Is there a similar solution for HP-UX like what we have in redhat/centos/fedora.
Your assistance will be highly appreciated.
Last edited by Franklin52; 11-30-2015 at 07:59 AM..
Reason: Please use code tags
Hi everybody !!
I want to do something and I can't figure out. The idea is that a script should send an email when a backup is done.
It works with a unix account (like root) but what I really want is to send that email to other account like fede@somethig.com.
I have a mail server installed... (11 Replies)
Hi everybody, I'm writing to know what the following event stands for. I know that the following event is about a "su to root" action but I don't have any Idea about what action could rise this message. For example If an acction performed by the root crontab, a sudo command or something like that.... (1 Reply)
Hi,
The audit default config has no "authentication" so I added it:
General=USER_Login,USER_Logout,USER_SU,.............
I reset the audit with "audit shutdown". There's no event recorded with it only all other events are recorder.
I check the events for USER_Login/USER_Logout:
.
.... (0 Replies)
Hi,
we have server, that is auditing actions executed, and then sends them to the syslog server.
But there is arguments to issued to the commands in the audit trail, but there is no such arguments in the syslog output on the syslog server!
Example - I executed:
# ls -la
audit... (1 Reply)
Dear All:)
We want to send log message from Tomcat Log to Syslog. So we have configured as follows:
Our environment: Tomcat 5.5 with CentOS 5.6 Final version (32Bit)
log4j.properties file location:
/usr/share/tomcat5/common/classes
log4j-1.2.16.jar and commons-logging-1.1.1.jar... (2 Replies)
Dear All
When I start the AIX(6100-06)audit subsystem.
the log will save in /audit/stream.out (or /audit/trail), but in default when /audit/stream.out to grow up to 150MB.
It will replace the original /audit/stream.out (or /audit/trail).
Then the /audit/stream.out become empty and... (2 Replies)
Hi everyone,
how i can configure a single audit service in the global zone for all zones, on solaris BSM.
I will be glad to hear back from you.
Thanks and Regards (3 Replies)
Hi everyone,
I am trying to configure AIX 6.1 using syslogd to send syslog event to syslog server configured on RHEL. However, RHEL never receives the events.
I have tried to redirect the syslog event on AIX to a local file and successful. Only forwarding to remote server fails.
Firewall... (10 Replies)
Discussion started by: michael_hoang
10 Replies
LEARN ABOUT SUSE
razor2::syslog
Razor2::Syslog(3) User Contributed Perl Documentation Razor2::Syslog(3)NAME
Razor2::Syslog -- Syslog support for Razor2
SYNOPSIS
use Razor2::Syslog;
my $s=new Razor2::Syslog(Facility=>'local4',Priority=>'debug');
$s->send('see this in syslog',Priority=>'info');
DESCRIPTION
This module has been derived from Net::Syslog. Some optimizations were made to Net::Syslog, in particular support for keeping a socket
open. What follows is the documentation for Net::Syslog, which completely applies to this module.
Net::Syslog implements the intra-host syslog forwarding protocol. It is not intended to replace the Sys::Syslog or Unix::Syslog modules,
but instead to provide a method of using syslog when a local syslogd is unavailable or when you don't want to write syslog messages to the
local syslog.
The new call sets up default values, any of which can be overridden in the send call. Keys (listed with default values) are:
Name <calling script name>
Facility local5
Priority err
SyslogPort 514
SyslogHost 127.0.0.1
Valid Facilities are: kern, user, mail, daemon, auth, syslog, lpr, news, uucp, cron, authpriv, ftp, local0, local1, local2,
local3, local4, local5, local6
Valid Priorities are: emerg, alert, crit, err, warning, notice, info, debug
AUTHOR
Les Howard, les@lesandchris.com
Vipul Ved Prakash, mail@vipul.net
SEE ALSO syslog(3), Sys::Syslog(3), syslogd(8), Unix::Syslog(3), IO::Socket, perl(1)perl v5.12.1 2005-05-09 Razor2::Syslog(3)