Linux Service Modification Service Stop (via Splunk)

info Nessus Network Monitor Plugin ID 710021

Synopsis

SIEM Pull Service has detected via Splunk query that, on this Linux system, a service or daemon was stopped.

Description

SIEM Pull Service has detected via Splunk query that, on this Linux system, a service or daemon was stopped. The query used was (type="DAEMON_END" OR type="SERVICE_STOP" OR "systemd: Stop*" OR "normal halt")

Solution

N/A

Plugin Details

Severity: Info

ID: 710021

Family: Policy

Published: 8/20/2004

Updated: 5/18/2018

Detections

Analytics