RE: [loganalysis] why read your logs?

From: Smith Gary-GSMITH1 (Gary.R.Smithat_private)
Date: Tue Sep 11 2001 - 09:49:32 PDT

Next message: Andrew Stribblehill: "Re: [loganalysis] why read your logs?"

Previous message: Hal Snyder: "Re: [loganalysis] why read your logs?"
Maybe in reply to: Tina Bird: "[loganalysis] why read your logs?"
Next in thread: Andrew Stribblehill: "Re: [loganalysis] why read your logs?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

HI Tina,

How about this analogy:

Many buildings today have a set of closed-circuit security cameras set up
around their perimeter. These cameras display the activity they are
observing at some number of TV screens in a central monitoring area. Would
it make sense to NOT have someone watching these TV screens for suspect
activity or someone trying to break in? No, of course not. There is/are
security professional(s) watching the screens to catch the nefarious
activity and prevent loss of property of life. Similarly, do it make sense
to NOT have somebody reading the logs to see if nefarious actvity is going
on. No, of course not. Same melody in both cases, just different word to the
music...

Best Regards,

Gary Smith


-----Original Message-----
From: Tina Bird [mailto:tbird@precision-guesswork.com]
Sent: Monday, September 10, 2001 7:27 PM
To: loganalysisat_private
Subject: [loganalysis] why read your logs?


that ought to cause a bit of a rumpus.

i've been tasked with giving a presentation to a group
of manager types who do not have our understanding of the
importance of staffing for log monitoring.  i've got a 
couple of analogies to use for them -- things like asking
how many of them balance their checkbooks or read their credit
card statements -- but figured that this group might have
an idea or two of how to convince a non-technie (or a new
sys admin) of how important this is...

any ideas?

thanks -- tbird

LogAnalysis: http://kubarb.phsx.ukans.edu/~tbird/log-analysis.html
VPN:  http://kubarb.phsx.ukans.edu/~tbird/vpn.html
life: http://kubarb.phsx.ukans.edu/~tbird
work: http://www.counterpane.com


---------------------------------------------------------------------
To unsubscribe, e-mail: loganalysis-unsubscribeat_private
For additional commands, e-mail: loganalysis-helpat_private

---------------------------------------------------------------------
To unsubscribe, e-mail: loganalysis-unsubscribeat_private
For additional commands, e-mail: loganalysis-helpat_private

Next message: Andrew Stribblehill: "Re: [loganalysis] why read your logs?"
Previous message: Hal Snyder: "Re: [loganalysis] why read your logs?"
Maybe in reply to: Tina Bird: "[loganalysis] why read your logs?"
Next in thread: Andrew Stribblehill: "Re: [loganalysis] why read your logs?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Sep 11 2001 - 12:41:44 PDT