no way to compare when less than two revisions
Differences
This shows you the differences between two versions of the page.
— | centos7:4:1:8 [2017/05/04 18:07] (current) – created Piotr Kłoczewski | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ======4.1.8 Ensure login and logout events are collected (Scored)====== | ||
+ | =====Profile Applicability===== | ||
+ | < | ||
+ | Level 2 - Server | ||
+ | Level 2 - Workstation | ||
+ | </ | ||
+ | |||
+ | =====Description===== | ||
+ | Monitor login and logout events. The parameters below track changes to files associated with login/ | ||
+ | |||
+ | =====Rationale===== | ||
+ | Monitoring login/ | ||
+ | |||
+ | =====Audit===== | ||
+ | Run the following command and verify output matches: | ||
+ | < | ||
+ | # grep logins / | ||
+ | -w / | ||
+ | -w / | ||
+ | </ | ||
+ | |||
+ | =====Remediation===== | ||
+ | Add the following lines to the / | ||
+ | < | ||
+ | -w / | ||
+ | -w / | ||
+ | </ | ||