$IncludeConfig is Your Friend

If you have a large rsyslog environment with multiple inputs, multiple modules, lists of templates and a slew of rules and rulesets, you’ll want to keep it all organized and accessible.   Here’s a few pointers for using $IncludeConfig  to keep your configuration as simple, easy to maintain and efficient as possible.

Continue reading

Advertisements

Disabling SSLv2, SSLv3 AND TLS 1.0

If you’re running rsyslog and want to run it securely, you’re going to want to disable SSLv2 and SSLv3.  If you’re running rsyslog in a PCI environment you’ll HAVE to.  Given recent PCI standards you’ll also have to disable TLS 1.0 (and likely 1.1 in the near future).

First thing you’ll need to do is familiarize yourself with GnuTLS priority strings, and what string fits your needs.  Go here: GnuTLS Priority Strings for a full read on priority strings.

Continue reading