From 717fcb9c81d2bc3cc7a84a3ebea6572d7ff0f5cf Mon Sep 17 00:00:00 2001
From: doc <doc@filenotfound.org>
Date: Mon, 30 Jun 2025 20:06:28 +0000
Subject: uploading documentation

---
 genesishosting/security/logging-monitoring.md | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 genesishosting/security/logging-monitoring.md

(limited to 'genesishosting/security/logging-monitoring.md')

diff --git a/genesishosting/security/logging-monitoring.md b/genesishosting/security/logging-monitoring.md
new file mode 100644
index 0000000..c305627
--- /dev/null
+++ b/genesishosting/security/logging-monitoring.md
@@ -0,0 +1,24 @@
+# Logging & Monitoring Policy
+
+We collect and monitor system activity to detect threats, enforce accountability, and assist in incident resolution.
+
+## Log Types
+
+- SSH login attempts
+- WHMCS access logs
+- AzuraCast and TeamTalk server logs
+- PostgreSQL query and connection logs
+- Fail2Ban logs (ban/unban events)
+
+## Monitoring Tools
+
+- Prometheus for metrics
+- Grafana dashboards for visual alerts
+- Genesis Shield (Telegram + Mastodon alerting)
+- Manual log review every 7 days
+
+## Retention
+
+- General logs: 30 days
+- Security-related logs: 90 days minimum
+- Logs archived to encrypted ZFS volume
-- 
cgit v1.2.3