Mercurial Mercurial > prosody > prosody-modules / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_audit/README.md
author Matthew Wild <mwild1@gmail.com>
Sat, 24 Sep 2022 09:26:26 +0100
changeset 5063 5f1120c284c5
parent 4936 530d116b7f68
child 5330 dc058fcc3fe3
permissions -rw-r--r--
mod_cloud_notify_extensions: Add note about dependency Noting here because people might not click through to see it on the mod_cloud_notify_encrypted page.
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
4936
530d116b7f68 mod_audit*: modules for audit logging in prosody
Jonas Schäfer <jonas@wielicki.name>
parents:
diff changeset 
     1
 
---
530d116b7f68 mod_audit*: modules for audit logging in prosody
Jonas Schäfer <jonas@wielicki.name>
parents:
diff changeset 
     2
 
summary: Audit Logging
530d116b7f68 mod_audit*: modules for audit logging in prosody
Jonas Schäfer <jonas@wielicki.name>
parents:
diff changeset 
     3
 
rockspec: {}
530d116b7f68 mod_audit*: modules for audit logging in prosody
Jonas Schäfer <jonas@wielicki.name>
parents:
diff changeset 
     4
 
...
530d116b7f68 mod_audit*: modules for audit logging in prosody
Jonas Schäfer <jonas@wielicki.name>
parents:
diff changeset 
     5
 












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




     6


This module provides infrastructure for audit logging inside Prosody.












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




     7














530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




     8


## What is audit logging?












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




     9














530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    10


Audit logs will contain security sensitive events, both for server-wide












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    11


incidents as well as user-specific.












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    12














530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    13


This module, however, only provides the infrastructure for audit logging. It












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    14


does not, by itself, generate such logs. For that, other modules, such as












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    15


`mod_audit_auth` or `mod_audit_register` need to be loaded.












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    16














530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    17


## A note on privacy












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    18














530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    19


Audit logging is intended to ensure the security of a system. As such, its












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    20


contents are often at the same time highly sensitive (containing user names












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    21


and IP addresses, for instance) and allowed to be stored under common privacy












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    22


regulations.












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    23














530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    24


Before using these modules, you may want to ensure that you are legally












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    25


allowed to store the data for the amount of time these modules will store it.












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    26


Note that it is currently not possible to store different event types with












530d116b7f68
mod_audit*: modules for audit logging in prosody



Jonas Schäfer <jonas@wielicki.name>


parents: 

diff
changeset




    27


different expiration times.














prosody-modules