('binary' encoding is not supported, stored as-is) This is my first day in the loga analysis world so don't be too harsh on me. My requirement is to have a central log repository that will collect log data from all the systems , web servers and firewalls on our network. That will be a lot of data since we have about six web servers, couple of firewalls and 10 UNIX servers. I have to develop a system that does an analysis on the data that is collected from all the different sources. In that analysis I should be able to determine if someone's trying to hack in or intrude our network or any system on that. I need to generate alerts based on that. My question is, how much of what I need to do can be accomplished by packages already out there and how much will I need to code myself. Also, do logs have a standard in the way applications write to them so that I know how to parse them and have an idea of all possible information I can gleam from them. Thanks, JT. --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Thu Feb 07 2002 - 17:20:18 PST