[logs] SANS First Wednesday Webcast - January 8 (fwd)

From: Tina Bird (tbird@precision-guesswork.com)
Date: Sun Jan 05 2003 - 12:53:12 PST

  • Next message: Balazs Scheidler: "[logs] EventLog library"

    Shameless self-promotion: I'll be doing a short online presentation on
    logfile based intrusion detection for SANS on Wednesday.  You have to
    register but it's free.
    
    tbird
    
    ------------------------------------------------------------------
    Never express yourself more clearly than you think.  -- Niels Bohr
    
    http://www.shmoo.com/~tbird
    Log Analysis http://www.loganalysis.org
    VPN http://vpn.shmoo.com
    
    ---------- Forwarded message ----------
    Date: Sun, 5 Jan 2003 13:45:12 -0700 (MST)
    From: The SANS Institute <Webcastsat_private>
    To: "Tina Bird (SD565876)" <tbird@precision-guesswork.com>
    Subject: SANS First Wednesday Webcast - January 8
    
    Join us Wednesday, January 8 at 1:00 PM EST (1800 UTC) for this
    complimentary presentation:
    
    "Top 10 Syslog Based Signs You've Been Hacked" with Tina Bird of
    Information Technology Systems and Services.
    
    If you're just starting to look at your system logfiles, this webcast
    is for you.  Tina will discuss a variety of messages that may indicate
    malicious behavior in your network, or may at least merit a bit of
    investigation.  The talk is primarily focused on UNIX syslog data, but
    Windows Event Logs will also be included.
    
    You can listen live and ask questions, or, once you have an access code,
    sign on later to listen to the webcast at your leisure through our
    archive. (For a complete listing of past, present, and future SANS First
    Wednesday Webcasts visit www.sans.org/webcasts)
    
    To take advantage of this opportunity register for the free web
    broadcast at:
    https://www.sans.org/webcasts/010803.php
    
    On the day of the event, please return to this same URL to login to the
    broadcast.
    
    
    To change your subscription, address, or other information, visit
    http://www.sans.org/sansurl and enter your SD number (from the headers.)
    You will receive your personal URL via email. Unsubscribing will take
    you off any news bulletin lists for Newsbites or Security Alert
    Consensus as well as any conference information notes.
    
    You may also email <sansat_private> with complete instructions and your
    SD number for subscribe, unsubscribe, change address, add other digests,
    or any other comments
    
    
    _______________________________________________
    LogAnalysis mailing list
    LogAnalysisat_private
    http://lists.shmoo.com/mailman/listinfo/loganalysis
    



    This archive was generated by hypermail 2b30 : Sun Jan 05 2003 - 15:44:58 PST