In my company we have to comply with the following:
Log facilities and information in log files should be protected against forgery and unauthorized access.
Unauthorized access: Check.
Protection against forgery: ?
A limited group of our admins has either access to the machine running Graylog (Community Edition) or Graylog web UI. How can we shield the Graylog data from forgery? Or provide proof the logs are authentic, perhaps using SecureLog? I can imagine there is already some kind solution available in relation to forensic data integrity.
Thanks,