Back

Enable the logrotate (syslog rotator) service as necessary.


CONTROL ID
04952
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Disable all unnecessary services unless otherwise noted in a policy exception., CC ID: 00880

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Ensure logrotate is configured Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageably large. The file `/etc/logrotate.d/syslog` is the configuration file used to rotate log files created by `syslog` or … (4.2.3, CIS Amazon Linux 2 Benchmark, v.2.0.0, Level 1)
  • Ensure logrotate is configured Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageably large. The file `/etc/logrotate.d/syslog` is the configuration file used to rotate log files created by `syslog` or … (4.2.3, CIS Amazon Linux 2 Benchmark, v.2.0.0, Level 2)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsysl… (Rule: xccdf_org.cisecurity.benchmarks_rule_4.3_Configure_logrotate Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_4.3.1_, The Center for Internet Security CentOS 6 Level 1 Benchmark, 1.0.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsysl… (Rule: xccdf_org.cisecurity.benchmarks_rule_4.3_Configure_logrotate Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_4.3.2_, The Center for Internet Security CentOS 6 Level 1 Benchmark, 1.0.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsysl… (Rule: xccdf_org.cisecurity.benchmarks_rule_4.3_Configure_logrotate Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_4.3.3_, The Center for Internet Security CentOS 6 Level 1 Benchmark, 1.0.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsys… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.3_Configure_logrotate Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.3.1_, The Center for Internet Security Red Hat Enterprise Linux 6 Level 1 Benchmark, 1.2.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsys… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.3_Configure_logrotate Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.3.2_, The Center for Internet Security Red Hat Enterprise Linux 6 Level 1 Benchmark, 1.2.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsys… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.3_Configure_logrotate Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.3.3_, The Center for Internet Security Red Hat Enterprise Linux 6 Level 1 Benchmark, 1.2.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsys… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.3_Configure_logrotate Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.3.1_, The Center for Internet Security Red Hat Enterprise Linux 6 Level 2 Benchmark, 1.2.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsys… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.3_Configure_logrotate Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.3.2_, The Center for Internet Security Red Hat Enterprise Linux 6 Level 2 Benchmark, 1.2.0)
  • Title: Configure logrotate Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageable large. The file /etc/logrotate.d/syslog is the configuration file used to rotate log files created by syslog or rsys… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.3_Configure_logrotate Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.3.3_, The Center for Internet Security Red Hat Enterprise Linux 6 Level 2 Benchmark, 1.2.0)
  • Ensure logrotate is configured Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageably large. The file `/etc/logrotate.d/syslog` is the configuration file used to rotate log files created by `syslog` or … (4.3, CIS Oracle Linux 8 Benchmark, Server Level 1, v1.0.1)
  • Ensure logrotate is configured Description: The system includes the capability of rotating log files regularly to avoid filling up the system with logs or making the logs unmanageably large. The file `/etc/logrotate.d/syslog` is the configuration file used to rotate log files created by `syslog` or … (4.3, CIS Oracle Linux 8 Benchmark, Server Level 2, v1.0.1)
  • The logrotate (syslog rotater) service should be enabled or disabled as appropriate. Technical Mechanisms: via cron Parameters: enabled / disabled References: Section: 2.6.1.5, Value: enabled CCE-U-203 (CCE-4182-2, Common Configuration Enumeration List, Combined XML: Red Hat Enterprise Linux 5, 5.20130214)