Group Deletion
Enabled by default
Service: syslog
Log type: auth.log
Group deletion may signal the cleanup of an attack or someone trying to inconvenience a group of users in a network. It is also good to know what groups are active.
View Logs
grep " groupdel" /var/log/auth.log
Check Logging Status
Unfortunately, due to current limitations, we do not yet have this command, stay tuned for updates!
Disable Logging
Unfortunately, due to current limitations, we do not yet have this command, stay tuned for updates!
Enable Logging
Unfortunately, due to current limitations, we do not yet have this command, stay tuned for updates!
Language: bash
Back to Linux UbuntuTo see the log of group creation in Linux, enter the command grep " groupdel" /var/log/auth.log.
Additional References
View this article on GitHub