http://people.redhat.com/sgrubb/audit/index.html
The home page of the Linux audit project. This site contains several specifications
relating to different aspects of Linux audit as well as a short FAQ.
/usr/share/doc/packages/audit
The audit package itself contains a README with basic design information and
sample .rules files for different scenarios:
capp.rules: Controlled Access Protection Profile (CAPP)
lspp.rules: Labeled Security Protection Profile (LSPP)
nispom.rules: National Industrial Security Program Operating Manual Chapter
8(NISPOM)
stig.rules: Secure Technical Implementation Guide (STIG)
http://www.commoncriteriaportal.org/
The official Web site of the Common Criteria project. Learn all about the Common
Criteria security certification initiative and which role audit plays in this framework.
396
Security Guide