Classification
|
Rule Name |
Rule type |
classification |
common event |
|---|---|---|---|
|
Catch All : Level 3 |
Base Rule |
Information |
General Information |
|
AIX Message Repeated |
Sub Rule |
Information |
General Information |
|
AIX General Sendmail Message |
Sub Rule |
Information |
General Sendmail Information |
|
General FTP Information |
Sub Rule |
Information |
General FTP Information |
|
General AIX Syslog Information |
Sub Rule |
Information |
AIX General Information Msg |
|
AIX General Error |
Sub Rule |
Error |
General Server Error |
|
AIX General Failure |
Sub Rule |
Error |
General Server Error |
|
AIX General SSHD Info |
Sub Rule |
Information |
SSHD Information Message |
|
AIX General Term Server Info |
Sub Rule |
Information |
General Terminal Server Information |
|
Ifconfig Command Executed |
Sub Rule |
Access Success |
Command Executed |
|
Failed To Get Host Address |
Sub Rule |
Error |
Action Failure |
|
AIX General Superuser Access |
Sub Rule |
Access Success |
Object Accessed |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|---|---|---|
|
SAU2 |
<severity> |
Text/String |
|
N/A |
<dip> |
Number |
|
message forwarded from |
<dname> |
Text/String |
|
N/A |
<process> |
Text/String |
|
N/A |
<processid> |
Number |
|
N/A |
<quantity> |
Text/String |
|
N/A |
<tag1> |
Text/String |