Back

Configure the "send to a remote log host" setting for "Rsyslog logs" to organizational standards.


CONTROL ID
08800
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure Red Hat Enterprise Linux to Organizational Standards., CC ID: 08713

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Ensure rsyslog is configured to send logs to a remote log host Description: The `rsyslog` utility supports the ability to send logs it gathers to a remote log host running `syslogd(8)` or to receive messages from remote hosts, reducing administrative overhead. _**Note:** Ensure that the selection of… (4.2.1.5, CIS Amazon Linux 2 Benchmark, v.2.0.0, Level 1)
  • Ensure rsyslog is configured to send logs to a remote log host Description: The `rsyslog` utility supports the ability to send logs it gathers to a remote log host running `syslogd(8)` or to receive messages from remote hosts, reducing administrative overhead. _**Note:** Ensure that the selection of… (4.2.1.5, CIS Amazon Linux 2 Benchmark, v.2.0.0, Level 2)
  • Title: Configure rsyslog to Send Logs to a Remote Log Host Description: The rsyslog utility supports the ability to send logs it gathers to a remote log host running syslogd(8) or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a remote hos… (Rule: xccdf_org.cisecurity.benchmarks_rule_4.1.5_Configure_rsyslog_to_Send_Logs_to_a_Remote_Log_Host Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_4.1.5.1_rsyslog.remotehost, The Center for Internet Security CentOS 6 Level 1 Benchmark, 1.0.0)
  • Title: Configure rsyslog to Send Logs to a Remote Log Host Description: The rsyslog utility supports the ability to send logs it gathers to a remote log host running syslogd(8) or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a remote h… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.1.5_Configure_rsyslog_to_Send_Logs_to_a_Remote_Log_Host Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.1.5.1_rsyslog.remotehost, The Center for Internet Security Red Hat Enterprise Linux 6 Level 1 Benchmark, 1.2.0)
  • Title: Configure rsyslog to Send Logs to a Remote Log Host Description: The rsyslog utility supports the ability to send logs it gathers to a remote log host running syslogd(8) or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a remote h… (Rule:xccdf_org.cisecurity.benchmarks_rule_5.1.5_Configure_rsyslog_to_Send_Logs_to_a_Remote_Log_Host Artifact Expression:xccdf_org.cisecurity.benchmarks_ae_5.1.5.1_rsyslog.remotehost, The Center for Internet Security Red Hat Enterprise Linux 6 Level 2 Benchmark, 1.2.0)
  • Title: Configure rsyslog to Send Logs to a Remote Log Host Description: The rsyslog utility supports the ability to send logs it gathers to a remote log host running syslogd(8) or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a re… (Rule: xccdf_org.cisecurity.benchmarks_rule_8.2.5_Configure_rsyslog_to_Send_Logs_to_a_Remote_Log_Host Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_8.2.5.1_rsyslog.remotehost, The Center for Internet Security Ubuntu 12.04 LTS Level 1 Benchmark, v1.0.0)
  • Title: Configure rsyslog to Send Logs to a Remote Log Host Description: The rsyslog utility supports the ability to send logs it gathers to a remote log host running syslogd(8) or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a re… (Rule: xccdf_org.cisecurity.benchmarks_rule_8.2.5_Configure_rsyslog_to_Send_Logs_to_a_Remote_Log_Host Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_8.2.5.1_rsyslog.remotehost, The Center for Internet Security Ubuntu 12.04 LTS Level 2 Benchmark, v1.0.0)
  • Ensure rsyslog is configured to send logs to a remote log host Description: The `rsyslog` utility supports the ability to send logs it gathers to a remote log host running `syslogd(8)` or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a remote… (4.2.1.5, CIS Oracle Linux 8 Benchmark, Server Level 1, v1.0.1)
  • Ensure rsyslog is configured to send logs to a remote log host Description: The `rsyslog` utility supports the ability to send logs it gathers to a remote log host running `syslogd(8)` or to receive messages from remote hosts, reducing administrative overhead. Rationale: Storing log data on a remote… (4.2.1.5, CIS Oracle Linux 8 Benchmark, Server Level 2, v1.0.1)
  • Rsyslog logs should be sent to a remote loghost or not as appropriate. Technical Mechanisms: via /etc/rsyslog.conf Parameters: sent / not sent References: Section: 2.6.1.2.5 - Send Logs to a Remote Host Using Reliable Transport (CCE-17248-6, Common Configuration Enumeration List, Combined XML: Red Hat Enterprise Linux 5, 5.20130214)