IRS Compliance on SLES 11 SP3 Production Print Spooler
Good morning, Linux gurus. I consider myself still a Linux newbie and am the admin of a Linux production print spooler but mostly interact with the vendor's gui interface on this SLES 11 SP3 device. The vendor is hands-off when it comes to any auditing and when I asked if I could implement SECCHECK said they did not recommend. I have a requirement to implement auditing to meet IRS compliance for FTI. I need to know the simplest way to implement the Linux Audit Framework or be able to capture and provide the required information on changes in SUID/SGID files, system baseline, user logins/logouts/denials, etc. I have modified SYSLOG-NG to allow centralized collection by Qradar
, but doubt this will meet all requirements. All input greatly appreciated!
Last edited by yuhas; 07-21-2015 at 05:15 AM.
Reason: wrong area
|