Re: [logs] the log management/monitoring space (fwd)

• Previous message: Darren Reed: "Re: [logs] SDSC Secure Syslog"
• In reply to: Tina Bird: "[logs] the log management/monitoring space (fwd)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I think you missed

<URL:http://www.tivoli.com/products/index/risk-mgr/>

This is a product where you make provisions to route all your log
data into a central analytic server, and it then tries to classify
and prioritize the records, and do some "correlation", by which they
mean producing events that reflect collections of other events that
have been logged. The nearest commercial competitor I know of is
<URL:http://www.esecurityinc.com/>, which was listed but not yet
described in your list.

The intent of these products is that after a reasonable amount of
time and effort is spent tuning to a suitable config, you should be
able to get good quality alerts, suitable for automatically setting
off pagers

-Bennett

• application/pgp-signature attachment: stored

• Next message: Rainer Gerhards: "RE: [logs] SDSC Secure Syslog"
• Previous message: Darren Reed: "Re: [logs] SDSC Secure Syslog"
• In reply to: Tina Bird: "[logs] the log management/monitoring space (fwd)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Dec 13 2002 - 10:58:03 PST