diff options
Diffstat (limited to 'genesishosting/security/logging-monitoring.md')
| -rw-r--r-- | genesishosting/security/logging-monitoring.md | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/genesishosting/security/logging-monitoring.md b/genesishosting/security/logging-monitoring.md new file mode 100644 index 0000000..c305627 --- /dev/null +++ b/genesishosting/security/logging-monitoring.md @@ -0,0 +1,24 @@ +# Logging & Monitoring Policy + +We collect and monitor system activity to detect threats, enforce accountability, and assist in incident resolution. + +## Log Types + +- SSH login attempts +- WHMCS access logs +- AzuraCast and TeamTalk server logs +- PostgreSQL query and connection logs +- Fail2Ban logs (ban/unban events) + +## Monitoring Tools + +- Prometheus for metrics +- Grafana dashboards for visual alerts +- Genesis Shield (Telegram + Mastodon alerting) +- Manual log review every 7 days + +## Retention + +- General logs: 30 days +- Security-related logs: 90 days minimum +- Logs archived to encrypted ZFS volume |