Logs are a ledger of events that occur on a computer system. These are often stored in “log files” due to them tradtionally being stored within files on a filesystem.
In a contemporary setting, logs are shipped off of endpoints to a centralized collector where they are analyzed for security and maintenance purposes. Shipping logs elsewhere also serves backup purposes.
Logging is the process of adding data to log files.
Links to this note
- artoflinuxkernelrootkit-tmpout4-matheuzsec_humzak711
- Main Index
- borges2021
- command history
- most observed sshd backdoors shared the same rough feature set
- linuxplus-breshahan2015
- securelist-penquins_moonlit_maze2017
- /var/log
- access.log
- Apache Log4j
- auth.log
- history file
- log rotation
- log wiper
- Main Index - L
- Point of Sale
- process logging
- Splunk
- syslog
- Windows Event Log