Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: syslog

from [Michael Shirk] Network Security [Permanent Link]
Subject: RE: syslog
Date: Fri Sep 24 07:11:51 EDT 2004 
You can use snare on the Windows servers, and I believe you can do some 
customising of the network devices to get them into a syslog format and send 
all of the logs to a stealth logger (no ip, just mac address).                  
                                                                                
                                                                                
                                            
                                                                                
                                                                                
                                                      
Envision is a product that can do all syslog style formats from different 
sources. I believe you would still need snare for the windows servers.          
                                                                                
                                                                                
                                                                                
               
                                                                                
                                                                                
                                                                                
                        
http://www.network-intelligence.com/                                            
                                                                                
         
                                                                                
                                                                                
                                                                                
                                   
Shirkdog
-----Original Message-----
From: Nhon.Tran@logicacmg.com [mailto:Nhon.Tran@logicacmg.com]
Sent: Monday, September 20, 2004 3:36 AM
To: security-basics@securityfocus.com
Subject: syslog
Importance: Low
Hi all
One of the companies I support wants to implement a syslog strategy for all
their infrasturcture devices.. Unix boxes, windows server, cisco comms
devices. To hopefully capture all the logs, we're talking about lots of
logs, their domain servers log about 300K items a day!.. Unix boxes log
heaps too about 70K per day per server!.. They have around 80 unix server,
120 windows servers and about 150 comms devices.. Any idea what the best way
to go about this would be, also any suggestions of what log analysis
software to use?
Nhon
This e-mail and any attachment is for authorised use by the intended 
recipient(s) only. It may contain proprietary material, confidential 
information and/or be subject to legal privilege. It should not be copied, 
disclosed to, retained or used by, any other party. If you are not an intended 
recipient then please promptly delete this e-mail and any attachment and all 
copies and inform the sender. Thank you.
---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.
http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------


!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+
CryptoMail provides free end-to-end message encryption.  
http://www.cryptomail.org/   Ensure your right to privacy.
Traditional email messages are not secure.  They are sent as
clear-text and thus are readable by anyone with the motivation
to acquire a copy.
!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+!+


---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: How to Enforce Complex Password Policy for Selected Users Onl y, Nunez, Yonesy F.
Next by Date:  Re: Laptop Encryption & Hibernation, Ravishankar
Previous by Thread:  Re: syslog, GuidoZ
Next by Thread:  RE: syslog, R. Maheswaran
Indexes:  [Date] [Thread] [Top] [All Lists]