Classification
|
Rule Name |
Rule Type |
Classification |
Common Event |
|---|---|---|---|
|
Catch All : General Messages |
Base Rule |
Other Operations |
General Operations |
|
Linux : General Syslog Info |
Sub Rule |
Information |
General Syslog Information |
|
Linux : General Mail Info |
Sub Rule |
Information |
General Sendmail Information |
|
Linux : General Auth Emergency |
Sub Rule |
Critical |
General Authentication Emergency |
|
Linux : General Auth Alert |
Sub Rule |
Critical |
General Authentication Alert |
|
Linux : General Auth Critical |
Sub Rule |
Critical |
General Authentication Critical |
|
Linux : General Auth Err |
Sub Rule |
Error |
General Authentication Error |
|
Linux : General Auth Warning |
Sub Rule |
Warning |
General Authentication Warning |
|
Linux : General Auth Notice |
Sub Rule |
Information |
General Authentication Notice |
|
Linux : General Auth Info |
Sub Rule |
Information |
General Authentication Information |
|
Linux : General Auth Priv Emergency |
Sub Rule |
Critical |
General Privileged Authentication Emergency |
|
Linux : General Auth Priv Alert |
Sub Rule |
Critical |
General Privileged Authentication Alert |
|
Linux : General Auth Priv Critical |
Sub Rule |
Critical |
General Privileged Authentication Critical |
|
Linux : General Auth Priv Err |
Sub Rule |
Error |
General Privileged Authentication Error |
|
Linux : General Auth Priv Warning |
Sub Rule |
Warning |
General Privileged Authentication Warning |
|
Linux : General Auth Priv Notice |
Sub Rule |
Information |
General Privileged Authentication Notice |
|
Linux : General Auth Priv Info |
Sub Rule |
Information |
General Privileged Authentication Information |
|
Linux : General Cron Emergency |
Sub Rule |
Critical |
General Cron Emergency |
|
Linux : General Cron Alert |
Sub Rule |
Critical |
General Cron Alert |
|
Linux : General Cron Critical |
Sub Rule |
Critical |
General Cron Critical |
|
Linux : General Cron Err |
Sub Rule |
Error |
General Cron Error |
|
Linux : General Cron Warning |
Sub Rule |
Warning |
General Cron Warning |
|
Linux : General Cron Notice |
Sub Rule |
Information |
General Cron Notice |
|
Linux : General Cron Info |
Sub Rule |
Information |
General Cron Information |
|
Linux : General Kernel Emergency |
Sub Rule |
Critical |
General Kernel Emergency |
|
Linux : General Kernel Alert |
Sub Rule |
Critical |
General Kernel Alert |
|
Linux : General Kernel Critical |
Sub Rule |
Critical |
General Kernel Critical |
|
Linux : General Kernel Err |
Sub Rule |
Error |
General Kernel Error |
|
Linux : General Kern Warning |
Sub Rule |
Warning |
General Kernel Warning |
|
Linux : General Kern Notice |
Sub Rule |
Information |
General Kernel Notice |
|
Linux : General Kern Info |
Sub Rule |
Information |
General Kernel Information |
|
Linux : General Local3 Emergency |
Sub Rule |
Critical |
General Local3 Emergency |
|
Linux : General Local3 Alert |
Sub Rule |
Critical |
General Local3 Alert |
|
Linux : General Local3 Critical |
Sub Rule |
Critical |
General Local3 Critical |
|
Linux : General Local3 Err |
Sub Rule |
Error |
General Local3 Error |
|
Linux : General Local3 Warning |
Sub Rule |
Warning |
General Local3 Warning |
|
Linux : General Local3 Notice |
Sub Rule |
Information |
General Local3 Notice |
|
Linux : General Local3 Info |
Sub Rule |
Information |
General Local3 Information |
|
Linux : General Local5 Emergency |
Sub Rule |
Critical |
General Local5 Emergency |
|
Linux : General Local5 Alert |
Sub Rule |
Critical |
General Local5 Alert |
|
Linux : General Local5 Critical |
Sub Rule |
Critical |
General Local5 Critical |
|
Linux : General Local5 Err |
Sub Rule |
Error |
General Local5 Error |
|
Linux : General Local5 Warning |
Sub Rule |
Warning |
General Local5 Warning |
|
Linux : General Local5 Notice |
Sub Rule |
Information |
General Local5 Notice |
|
Linux : General Local5 Info |
Sub Rule |
Information |
General Local5 Information |
|
Linux : General Local7 Emergency |
Sub Rule |
Critical |
General Local7 Emergency |
|
Linux : General Local7 Allert |
Sub Rule |
Critical |
General Local7 Alert |
|
Linux : General Local7 Critical |
Sub Rule |
Critical |
General Local7 Critical |
|
Linux : General Local7 Err |
Sub Rule |
Error |
General Local7 Error |
|
Linux : General Local7 Warning |
Sub Rule |
Warning |
General Local7 Warning |
|
Linux : General Local7 Notice |
Sub Rule |
Information |
General Local7 Notice |
|
Linux : General Local7 Info |
Sub Rule |
Information |
General Local7 Information |
|
Linux : General Mail Emergency |
Sub Rule |
Critical |
General Sendmail Emergency |
|
Linux : General Mail Alert |
Sub Rule |
Critical |
General Sendmail Alert |
|
Linux : General Mail Critical |
Sub Rule |
Critical |
General Sendmail Critical |
|
Linux : General Mail Err |
Sub Rule |
Error |
General Sendmail Error |
|
Linux : General Mail Warning |
Sub Rule |
Warning |
General Sendmail Warning |
|
Linux : General Mail Notice |
Sub Rule |
Information |
General Sendmail Notice |
|
Linux : General Syslog Emergency |
Sub Rule |
Critical |
General Syslog Emergency |
|
Linux : General Syslog Alert |
Sub Rule |
Critical |
General Syslog Alert |
|
Linux : General Syslog Critical |
Sub Rule |
Critical |
General Syslog Critical |
|
Linux : General Syslog Err |
Sub Rule |
Error |
General Syslog Error |
|
Linux : General Syslog Warning |
Sub Rule |
Warning |
General Syslog Warning |
|
Linux : General Syslog Notice |
Sub Rule |
Information |
General Syslog Notice |
|
Linux : General User Emergency |
Sub Rule |
Critical |
General User Emergency |
|
Linux : General User Alert |
Sub Rule |
Critical |
General User Alert |
|
Linux : General User Critical |
Sub Rule |
Critical |
General User Critical |
|
Linux : General User Err |
Sub Rule |
Error |
General User Error |
|
Linux : General User Warning |
Sub Rule |
Warning |
General User Warning |
|
Linux : General User Notice |
Sub Rule |
Information |
General User Notice |
|
Linux : General User Info |
Sub Rule |
Information |
General User Information |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|---|---|---|
|
N/A |
<severity> |
Text/String |
|
N/A |
<tag1> |
Text/String |