[openstack-dev] [OSSG] hardening openstack

Bhandaru, Malini K malini.k.bhandaru at intel.com
Thu Nov 1 23:55:24 UTC 2012


>From out of http://www.nsa.gov/ia/_files/factsheets/rhel5-pamphlet-i731.pdf
Review system and application logs on a routine basis. 
Dend logs to a dedicated log server. This prevents intruders from easily avoiding detection by modifying the local logs.

Down the road this is something we should consider. Might not want to have to go over the network for every log item, but do so in some digest mode. Alternately, create a VM for logging on the host nodes, a nova-log-vm, a quantum-log-vm .. and log to that for the respective openstack service. Needs more thought.

Regards
Malini



More information about the OpenStack-dev mailing list