Store log messages in encrypted and timestamped binary files - is possible with graylog?

I am looking for an open source solution that could to store log messages in encrypted,compressed and timestamped binary files with graylog software.

I mean I want centralise systems log of many servers to one centralised log server.

Next each time a log record is coming it should be signed and encrypted with a key/certificate inside a database and saved in binary.

Next I will need a web interface in order to search inside those logs ( that if encrypted should be indexed some way and decrypted during search ).

I notice that syslog-ng as a similar feature:

Exclusive features related to compliance Collecting and analyzing log messages is required directly or indirectly by several regulations, frameworks, and standards, including the Sarbanes-Oxley Act (SOX), the Health Insurance and Portability Act (HIPAA), and the Payment Card Industry Data Security Standard (PCI-DSS). syslog-ng PE provides a set of features that help you comply with regulations that require the central collection of log messages in a tamperproof way: l Logstore files enable you to store log messages securely in encrypted, compressed and timestamped binary files. From a compliance point of view, this serves a double purpose. Encryption guarantees the integrity of log messages so you can be sure that they have not been manipulated. Timestamping provides verifiable proof about the exact time when log messages arrived.

Any idea/solution ?

Thank you all

Start here:

1 Like

he @AkiraMenai

your request is not possible with Graylog. As the storage is Elasticsearch, the abilities are limited. But what is described from syslog-ng is not possible. The strength of Graylog is data processing and display options.

The blog refered by @tmacgbay is something that might give you some ideas what is possible.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.