> We encapsulate syslog, checkpoint, .... into a standard > and simple XML format. The only bad thing about XML is that people try and fit it to everything > <?xml version='1' standalone='yes'?> > <ipfc> > <smod> .... So what was simple and concise becomes complex and massive. Thats a lot of extra storage just to repeat those same tags over and over and extra cpu to process. It also means it becomes human unreadable and not suitable for simple quick manipulation (if you grep for a field you don't get the rest of the data as it's spread out over many lines) so you have to rely on the tools that made it which may be fooled by an attacker that knows their limitations or only pick up what the author though you'd be looking for. Data should only be handled as data and not have embedded code that is executed, mixing the instructions for interpreting the data and the data itself is a risk I don't think is worth the gain. regards brandon --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Sat Nov 10 2001 - 20:54:52 PST