Confirmed users
502
edits
Security/Mentorships/MWoS/2014/Linux Audit heka plugin (Go): Difference between revisions
Security/Mentorships/MWoS/2014/Linux Audit heka plugin (Go) (view source)
Revision as of 19:18, 20 February 2015
, 20 February 2015no edit summary
(Insert repo link) |
Gdestuynder (talk | contribs) No edit summary |
||
| Line 14: | Line 14: | ||
== Project == | == Project == | ||
Heka is a Mozilla project for logs routing, analysis, etc. (see http://hekad.readthedocs.org/en/latest/). Linux Audit logs are collecting various system calls and events in order to send them to a C user space program (auditd) over the netlink protocol. A Mozilla C plugin (https://github.com/gdestuynder/audisp-cef and https://github.com/gdestuynder/audisp-json) currently correlate, transforms, and send these events back to our logging architecture. | Heka is a Mozilla project for logs routing, analysis, etc. (see http://hekad.readthedocs.org/en/latest/). Linux Audit logs are collecting various system calls and events in order to send them to a C user space program (auditd) over the netlink protocol. A Mozilla C plugin (https://github.com/gdestuynder/audisp-cef and https://github.com/gdestuynder/audisp-json) currently correlate, transforms, and send these events back to our logging architecture. | ||
See also https://air.mozilla.org/mozilla-winter-of-security-audit-go-project/ for a complete presentation of the project. | |||
=== Description === | === Description === | ||
| Line 260: | Line 262: | ||
* Cleanup Code | * Cleanup Code | ||
* Push to Mozilla Repository | * Push to Mozilla Repository | ||
=== 2015-02-20 === | |||
Presentation of the project available on AirMozilla https://air.mozilla.org/mozilla-winter-of-security-audit-go-project/ | |||
=== <date> === | === <date> === | ||