Hi
Have a look at tier-3 - http://www.tier-3.com/
We are currently looking at their log correlation offering and it
appears pretty good with some nice features such as adding the log
servers time as a extra field (the recorded time is preserved also) -
this makes tracking events across multiple systems much easier if your
implementation of ntp is not perfect.
Cheers
K
-----Original Message-----
From: listbounce@securityfocus.com
[mailto:listbounce@securityfocus.com] On Behalf Of Roger Onken
Sent: 21 September 2007 14:10
To: security-basics@securityfocus.com
Subject: RE: Event Log Monitor Program
I'm looking for a good event log program that can
consolidate all my event logs from my servers into one
location.
I've been looking at EventTracker by Prism Microsystems
http://www.eventlogmanager.com/ and the ELM products by TNT
Software http://www.tntsoftware.com/Products/.
I haven't used either, but like what I see from
EventTracker.
Roger
-----Original Message-----
From: listbounce@securityfocus.com
[mailto:listbounce@securityfocus.com] On Behalf Of Adam
Savage
Sent: Thursday, September 20, 2007 2:11 PM
To: security-basics@securityfocus.com
Subject: Event Log Monitor Program
I'm looking for a good event log program that can
consolidate all my event logs from my servers into one
location. Then I can report on them and such. We purchased
GFI Security Event Log Monitor but we find the program
cumbersome at best and doesn't give you any insight on some
of the event messages that are produced. I'd like to know
if there is a freeware/opensource solution. I know GFI has
recently come out with the Successor to SELM called
EventsManager but we'd like to look into some other products
that are out there first.
Any replies would be greatly appreciated.
Thank you,
Adam
