diff --git a/bin/hardening/8.2.5_rsyslog_remote_host.sh b/bin/hardening/8.2.5_rsyslog_remote_host.sh
new file mode 100755
index 0000000..bfcd8e5
--- /dev/null
+++ b/bin/hardening/8.2.5_rsyslog_remote_host.sh
@@ -0,0 +1,70 @@
+#!/bin/bash
+
+#
+# harbian audit 7/8/9  Hardening
+#
+
+#
+# 8.2.5 Configure rsyslog to Send Logs to a Remote Log Host (Scored)
+# Author : Samson wen, Samson <sccxboy@gmail.com>
+#
+
+set -e # One error, it's over
+set -u # One variable unset, it's over
+
+HARDENING_LEVEL=3
+
+PATTERN='^*.*[^I][^I]*@'
+
+# This function will be called if the script status is on enabled / audit mode
+audit () {
+    FILES="$SYSLOG_BASEDIR/rsyslog.conf $SYSLOG_BASEDIR/rsyslog.d/*.conf"
+    does_pattern_exist_in_file "$FILES" "$PATTERN"
+    if [ $FNRET != 0 ]; then
+		crit "$PATTERN is not present in $FILES"
+    else
+        ok "$PATTERN is present in $FILES"
+    fi
+}
+
+# This function will be called if the script status is on enabled mode
+apply () {
+    FILES="$SYSLOG_BASEDIR/rsyslog.conf $SYSLOG_BASEDIR/rsyslog.d/*.conf"
+    does_pattern_exist_in_file "$FILES" "$PATTERN"
+    if [ $FNRET != 0 ]; then
+        crit "$PATTERN is not present in $FILES, please manual operation set a remote host to send your logs"
+    else
+        ok "$PATTERN is present in $FILES"
+    fi
+}
+
+# This function will create the config file for this check with default values
+create_config() {
+    cat <<EOF
+status=disabled
+SYSLOG_BASEDIR='/etc'
+EOF
+}
+
+# This function will check config parameters required
+check_config() {
+    :    
+}
+
+# Source Root Dir Parameter
+if [ -r /etc/default/cis-hardening ]; then
+    . /etc/default/cis-hardening
+fi
+if [ -z "$CIS_ROOT_DIR" ]; then
+     echo "There is no /etc/default/cis-hardening file nor cis-hardening directory in current environment."
+     echo "Cannot source CIS_ROOT_DIR variable, aborting."
+    exit 128
+fi
+
+# Main function, will call the proper functions given the configuration (audit, enabled, disabled)
+if [ -r $CIS_ROOT_DIR/lib/main.sh ]; then
+    . $CIS_ROOT_DIR/lib/main.sh
+else
+    echo "Cannot find main.sh, have you correctly defined your root directory? Current value is $CIS_ROOT_DIR in /etc/default/cis-hardening"
+    exit 128
+fi
diff --git a/bin/hardening/8.3.1_install_syslog-ng.sh b/bin/hardening/8.3.1_install_syslog-ng.sh
index cbeb15a..760c6c8 100755
--- a/bin/hardening/8.3.1_install_syslog-ng.sh
+++ b/bin/hardening/8.3.1_install_syslog-ng.sh
@@ -5,7 +5,8 @@
 #
 
 #
-# 8.2.1 Install the syslog-ng package (Scored)
+# 8.3.1 Install the syslog-ng package (Scored)
+# Modify by: Samson-W (sccxboy@gmail.com)
 #
 
 set -e # One error, it's over
@@ -15,22 +16,30 @@ HARDENING_LEVEL=3
 
 # NB : in CIS, rsyslog has been chosen, however we chose syslog-ng
 PACKAGE='syslog-ng'
+PACKAGE_R='rsyslog'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
-    is_pkg_installed $PACKAGE
-    if [ $FNRET != 0 ]; then
-        crit "$PACKAGE is not installed!"
-    else
-        ok "$PACKAGE is installed"
-    fi
+    is_pkg_installed $PACKAGE_R
+	if [ $FNRET = 0 ]; then
+		ok "$PACKAGE_R has installed, so pass."
+		FNRET=0
+	else
+    	if [ $FNRET != 0 ]; then
+        	crit "$PACKAGE is not installed!"
+			FNRET=1
+    	else
+        	ok "$PACKAGE is installed"
+			FNRET=0
+    	fi
+	fi
 }
 
 # This function will be called if the script status is on enabled mode
 apply () {
         is_pkg_installed $PACKAGE
         if [ $FNRET = 0 ]; then
-            ok "$PACKAGE is installed"
+            ok "$PACKAGE or $PACKAGE_R is installed"
         else
             crit "$PACKAGE is absent, installing it"
             apt_install $PACKAGE
diff --git a/bin/hardening/8.3.2_enable_syslog-ng.sh b/bin/hardening/8.3.2_enable_syslog-ng.sh
index 8741d7d..91869cd 100755
--- a/bin/hardening/8.3.2_enable_syslog-ng.sh
+++ b/bin/hardening/8.3.2_enable_syslog-ng.sh
@@ -5,7 +5,8 @@
 #
 
 #
-# 8.2.2 Ensure the syslog-ng Service is activated (Scored)
+# 8.3.2 Ensure the syslog-ng Service is activated (Scored)
+# Modify by: Samson-W (sccxboy@gmail.com)
 #
 
 set -e # One error, it's over
@@ -14,29 +15,42 @@ set -u # One variable unset, it's over
 HARDENING_LEVEL=3
 
 SERVICE_NAME="syslog-ng"
+SERVICE_NAME_R="rsyslog"
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
-    info "Checking if $SERVICE_NAME is enabled"
-    is_service_enabled $SERVICE_NAME
-    if [ $FNRET = 0 ]; then
-        ok "$SERVICE_NAME is enabled"
-    else
-        crit "$SERVICE_NAME is disabled"
-    fi
+	is_pkg_installed $SERVICE_NAME_R
+	if [ $FNRET = 0 ]; then
+		ok "$SERVICE_NAME_R has installed, so pass."
+		FNRET=0
+	else
+    	info "Checking if $SERVICE_NAME is enabled"
+    	is_service_enabled $SERVICE_NAME
+    	if [ $FNRET = 0 ]; then
+        	ok "$SERVICE_NAME is enabled"
+    	else
+        	crit "$SERVICE_NAME is disabled"
+    	fi
+	fi
 }
 
 # This function will be called if the script status is on enabled mode
 apply () {
-    info "Checking if $SERVICE_NAME is enabled"
-    is_service_enabled $SERVICE_NAME
-    if [ $FNRET != 0 ]; then
-        info "Enabling $SERVICE_NAME"
-        update-rc.d $SERVICE_NAME remove > /dev/null 2>&1
-        update-rc.d $SERVICE_NAME defaults > /dev/null 2>&1
-    else
-        ok "$SERVICE_NAME is enabled"
-    fi
+	is_pkg_installed $SERVICE_NAME_R
+	if [ $FNRET = 0 ]; then
+		ok "$SERVICE_NAME_R has installed, so pass."
+		FNRET=0
+	else
+    	info "Checking if $SERVICE_NAME is enabled"
+    	is_service_enabled $SERVICE_NAME
+    	if [ $FNRET != 0 ]; then
+        	info "Enabling $SERVICE_NAME"
+        	update-rc.d $SERVICE_NAME remove > /dev/null 2>&1
+        	update-rc.d $SERVICE_NAME defaults > /dev/null 2>&1
+    	else
+        	ok "$SERVICE_NAME is enabled"
+    	fi
+	fi
 }
 
 # This function will check config parameters required