8 matches found
EUVD-2020-3195
Malware in sbrugna...
Configure Dumping journald Logs for rsyslog
The system uses journald to collect logs. Logs may be stored on volatile or persistent storage devices. As a result, logs may be lost or the drive space may be used up. In this case, logs need to be dumped in a timely manner to ensure the security of logs and the system. SPDX-FileCopyrightText:...
Correctly Configure the Default File Permission For rsyslog
Log files record system behaviors. The rsyslog log tool records logs in specified files. When the specified log file does not exist in the system, rsyslog creates a log file. The permission of the created log file can be configured in the rsyslog configuration file. The configuration of the defau...
The vulnerability of the rsyslog configuration file in the Ansible configuration management system allows a hacker to gain unauthorized access to protected information.
The vulnerability of the rsyslog configuration file in the Ansible configuration management system is related to incorrect default access settings. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
CVE-2020-10782
An exposure of sensitive information flaw was found in Ansible. Sensitive information, such tokens and other secrets could be readable and exposed from the rsyslog configuration file, which has set the wrong world-readable permissions. The highest threat from this vulnerability is to...
Linux: auth.info and mail.info in /etc/rsyslog.conf
Redirect email and authentication device events to the local log file. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux: *.warning level in /etc/rsyslog.conf
The priority defines the severity of the message. - LOGWARNING: warning conditions. The asterisk SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
Linux: authpriv.* facility in /etc/rsyslog.conf
The facility argument is used to specify what type of program is logging the message. This lets the configuration file specify that messages from different facilities will be handled differently. - LOGAUTHPRIV: security/authorization messages private. The asterisk SPDX-FileCopyrightText: 2020...