Home page logo

educause logo Educause Security Discussion mailing list archives

Re: Log management
From: Isaac Straley <straley () UCI EDU>
Date: Wed, 31 Jan 2007 07:38:14 -0800

There have already been some good solutions mentioned.

I'd like to add that if you are more into rolling your own solution,
there are some good open source solutions, namely OSSEC.  You'll need a
little more than OSSEC to create a good log management solution, but
it's a great foundation.




Isaac Straley
Manager, IT Security
Network & Academic Computing Services
University of California, Irvine
straley () uci edu
(949) 824-1471

Charles L. Bombard wrote:
Hey everyone,

        What would you all recommend for central log management? We are
currently looking at GFI eventmanager. The ideal solution will combine
the monitoring of both windows and linux logs, and have the ability to
generate alerts based on our settings.

        Recommendations of things to look at as well as things to avoid
is appreciated.



Charles Bombard, GSEC
LAN/Systems Administrator
Community College of Vermont
119 Pearl Street
Burlington, VT 05401
bombardc () ccv edu

PRIVACY & CONFIDENTIALITY NOTICE: This message is for the designated
recipient only and may contain privileged, confidential, or otherwise
private information. If you have received it in error, please notify the
sender immediately and delete the original. Any other use of an email
received in error is prohibited.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]