Audit Logs and EventLog Analyzer
Dan Gruhn
Dan.Gruhn at groupw.com
Wed Jan 14 18:56:57 UTC 2009
I'm currently using AdventNet's EventLog Analyzer for auditing of a
secure Windows machine and thought it would be nice to use for a secure
RHEL 5.2 cluster as well since people would only need to use one
interface. It seems to do well with the syslog entries, but I don't see
anything about getting the auditd/ audit.log entries into it. Can
anyone point me to some information on how to do this or should I give
up on this and go the Prewikka route?
Thanks,
Dan
More information about the Linux-audit
mailing list