SEARCH RESULTS
 
Showing 1-10 of 324 records
 
Expand article

Cross-Device-Type Log Management vs Device-Specific Log Management

2008-06-02 14:38:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
Now, I have to first admit that, in general, dealing with logs on a device-specific basis is a cruel joke . What I mean here is when you gather Windows logs in one place, Linux logs in another place, database logs in yet another place; all in different formats, all in different systems not connected to each others, all managed by different...
 
Tags: logs, pci relevant logs, log management, database logs, logs remain, gather windows logs, device-specific log management, server logs, type
 
 
 
 
Expand article

From Apathy to Enlightenment: On A Log!

2008-04-22 13:48:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
So, I was talking to this small log management vendor the other day and he confided to me that his product faces fierce competition in his target market (which is, important to note, small to medium companies with 10-100 systems): and this competition is apathy More specifically, his prospects either just blow him off by saying "pah, who needs...
 
Tags: log, log management, deep log ignorance, log analysis systems, home-grown log analysis, log review, log management vendor, log analysis, systems
 
 
 
 
Expand article

Logging Poll #8 Analysis: Needed Log Context

The Article has images
2008-06-03 08:38:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
In my poll #8 , I asked a question : what information is most important when analyzing a particular log record. Live results are here and final count is also below What can we conclude First , good documentation never hurts :-) - indeed, the most popular information to look for when facing a new log record is documentation on what it means....
 
Tags: log, recent log entry, strange log entry, log time stamps, log record, heavy log, log entry, complement logs, logs
 
 
 
 
Expand article

Say When - Trusting Log Timestamps

2008-03-23 04:05:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
Am I a leading visionary in the field of log management ? :-) Who cares - I will now pontificate as if I am :-) It is about time: specifically, timing logs. As I said in my Log Trust and Protecting Logs from Admins posts, the issue of trust is critical in the logging world. After all, logs = accountability ; and the latter in unthinkable without...
 
Tags: logs, windows event logs, syslog files, syslog, define logs, syslog-ng, system logs, syslog daemon, time
 
 
 
 
Expand article

More Log Management Questions - Answered!

2008-05-23 16:04:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
I did this VERY fun webcast with WhiteHatWorld this week and a lot of good questions about log management came up. I am answering them here for my readers. BTW, LogLogic product-specific questions can be found on LogLogic website ; I am not answering them here Q1: Is a preferred log management program to consolidate the log data and then allow...
 
Tags: log management, log, defines log retention, log policy, log management tool, log management program, infrastructure logs, logs, log messages
 
 
 
 
Expand article

Fun TLR Log Management Questions

2008-03-14 12:04:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
As I mentioned before , I received a lot of fun questions from the audience during our "Log Management Thought Leadership Roundtable Webcast" ( recording , some comments ). Since they would be useful to my readers, I am answering some of them here (questions are anonymous and slightly rewritten for clarity Q1: When you mention "forensics", are...
 
Tags: log, log ownership issues, log services, log messagessecond, log management, log management solution, management, log sources, incident response team
 
 
 
 
Expand article

Who Benefits from Log Standards? Part II - Application Developers

2007-12-04 17:28:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
As I promised, I will post another blurb on log standards following the first: Who Benefits from Log Standards? Part I - Log Management Vendors Just as the previous one , this comes from the still-upcoming CEE whitepaper (yes, official website is still upcoming as well). Here is the quote that covers the benefits of log standards (in this case,...
 
Tags: application software vendors, software vendors, log standards, standards, vendors, log management vendors, log management, developers, log management people
 
 
 
 
Expand article

Log Management: Insight From Ancient Times (The 80s, That Is :-))

2008-05-12 17:35:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
My boss has posted two of the very fun blurbs on log management to our blog ; do check them out, especially if you are the fan of the 80s The Best of the 80s: Log Management for Operations More 80s: Rubik's Cube for Log Operations Fun blurbs from the above In surveys, 70%+ of organizations confess their primary budget for log management still...
 
Tags: log management, 80s, log data, console, fault management console, organizations confess, primary budget, operations, log messages
 
 
 
 
Expand article

Fun Reading on Logs and Log Management

2008-06-30 16:09:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
I am amazed (no, AMAZED!) about how many people now write about logs; it is definitely not "the original logging evangelist" anymore :-) Here is a quick sample, useful for those struggling with logs (aka "everybody A very fun read from Patrick Mueller (ex-Neohapsis now turned lawyer): " Facing The Monster: The Labors Of Log Management ." I am...
 
Tags: logs, log management, logs matter, baum laments logs, fun, nice basic piece, piece, ransom, siem