Home page logo

pauldotcom logo PaulDotCom mailing list archives

your log management tools of choice?
From: rgula at tenablesecurity.com (Ron Gula)
Date: Sun, 07 Jun 2009 17:15:22 -0400

There are a lot of great tools for gathering logs.

One thing I'd like feedback from the list on is sniffing syslog. There
have been
one or more tools over the years that allowed you to pull UDP port 514
packets off the wire and treat them as your own. We have this feature in
our agent that also sniffs TCP session start/stop/bandwidth info. It is
really useful. We have some university customers that pull syslog from all
over their network without the admins knowing more or less.

Ron Gula
Tenable Network Security

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]