Secrets/Key Information
Classification
Rule Name | Rule Type | Classification | Common Event |
|---|---|---|---|
| Loaded IKE Secret | Sub Rule | Information | Using Default Shared Secret |
| Loading Secrets | Sub Rule | Information | Using Default Shared Secret |
| Rereading Secrets | Sub Rule | Information | Using Default Shared Secret |
| Forgetting Secrets | Sub Rule | Information | Using Default Shared Secret |
| Loaded PSK Secret | Sub Rule | Information | Using Default Shared Secret |
| Secrets/Key Information | Base Rule | Information | General Process Information |
| Could Not Load Host Key | Sub Rule | Error | getHostSshKey Failed |
| Permission Misconfiguration | Sub Rule | Warning | Log Permission Misconfiguration |
| Loaded RSA Private Key | Sub Rule | Information | Key Exchange Information |
| Loaded Private Key | Sub Rule | Information | Key Exchange Information |
| Loaded Private Key | Sub Rule | Information | Key Exchange Information |
Mapping with LogRhythm Schema
Device Key in Log Message | LogRhythm Schema | Data Type |
|---|---|---|
| SAU1 | <severity> | Text/String |
| May 18 00:07:02 | <parentprocessname> | Text/String |
| N/A | <processid> | Number |
| N/A | <dname> | Text/String |
| N/A | <subject> | Text/String |
| N/A | <process> | Text/String |
| N/A | <tag1> | Text/String |
| N/A | <dip> | Number |
| N/A | <sip> | Number |
| N/A | <object> | Text/String |