Linux Archive

Linux Archive (http://www.linux-archive.org/)
-   Ubuntu Server Development (http://www.linux-archive.org/ubuntu-server-development/)
-   -   log analysis and reporting tools (http://www.linux-archive.org/ubuntu-server-development/192567-log-analysis-reporting-tools.html)

ahsiangsiang 11-13-2008 01:09 AM

log analysis and reporting tools
 
Hi All,

I looking for a central audit event collection, analysis, reporting system for Linux, Unix and Windows based box. Snare server by InterSect Alliance look to solve my problem but it a commercial product.


Anyone can give me a helpful hand?

will be very appreciate.

Thanks
--
i'm
Soon Siang, Shio
a Linux Toy Player
[please ping me at:] ahsiangsiang@gmail.com

[also at:] +6012-488-3692
------------------------------------------------------------------------------------------------
Promoting:
WiKID Two-factor authentication, without the hassle factor
DSPAM - Just go ahead send me viagra

Ubuntu JeOS "Juicy" - Just Enough Operating System
Postfix - a Wietse Venema's mailer
and
*please AVOID sending me Word or PowerPoint attachments.
http://www.gnu.org/philosophy/no-word-attachments.html

Before printing, please consider the environment.
Be GREEN!

--
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Ruben Laban 11-13-2008 06:28 AM

log analysis and reporting tools
 
On Thursday 13 November 2008 at 03:09 (CET), ahsiangsiang wrote:
> I looking for a central audit event collection, analysis, reporting system
> for Linux, Unix and Windows based box. Snare server by InterSect Alliance
> look to solve my problem but it a commercial product.
>
> Anyone can give me a helpful hand?

We use (nt)syslog + sec for that. All *nix and windows machines log to a
central logging host (linux box with syslogd -r running). The log files of
this central host is being filtered by sec and mailed to the sysadmins.

http://ntsyslog.sourceforge.net/
http://kodu.neti.ee/~risto/sec/

--
Regards,

Ruben

--
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

ahsiangsiang 11-13-2008 07:53 AM

log analysis and reporting tools
 
Thanks Ruben....


On Thu, Nov 13, 2008 at 3:28 PM, Ruben Laban <r.laban@ism.nl> wrote:

On Thursday 13 November 2008 at 03:09 (CET), ahsiangsiang wrote:

> I looking for a central audit event collection, analysis, reporting system

> for Linux, Unix and Windows based box. Snare server by InterSect Alliance

> look to solve my problem but it a commercial product.

>

> Anyone can give me a helpful hand?



We use (nt)syslog + sec for that. All *nix and windows machines log to a

central logging host (linux box with syslogd -r running). The log files of

this central host is being filtered by sec and mailed to the sysadmins.



http://ntsyslog.sourceforge.net/

http://kodu.neti.ee/~risto/sec/



--

Regards,



Ruben



--

ubuntu-server mailing list

ubuntu-server@lists.ubuntu.com

https://lists.ubuntu.com/mailman/listinfo/ubuntu-server

More info: https://wiki.ubuntu.com/ServerTeam



--
i'm
Soon Siang, Shio
a Linux Toy Player
[please ping me at:] ahsiangsiang@gmail.com
[also at:] +6012-488-3692

------------------------------------------------------------------------------------------------
Promoting:
WiKID Two-factor authentication, without the hassle factor
DSPAM - Just go ahead send me viagra
Ubuntu JeOS "Juicy" - Just Enough Operating System

Postfix - a Wietse Venema's mailer
and
*please AVOID sending me Word or PowerPoint attachments.
http://www.gnu.org/philosophy/no-word-attachments.html

Before printing, please consider the environment.
Be GREEN!

--
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam


All times are GMT. The time now is 04:13 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.