Security Basics mailing list archives

RE: Event log monitoring

From: "Osvaldo Casagrande" <ocasagrande () diviserv com>
Date: Thu, 14 Oct 2004 12:05:27 -0400

You could try.

Eventquery.vbs (from Microsoft) and schedule yours queries. Or you could try EventCombMT (gui and not for schedule)


Osvaldo Casagrande
Asuncion - Paraguay 

-----Mensaje original-----
De: David Nardoni [mailto:dnardoni () sbcglobal net] 
Enviado el: Miércoles, 13 de Octubre de 2004 05:26 p.m.
Para: 'Stephane Auger'; security-basics () securityfocus com
Asunto: RE: Event log monitoring

 
Try syslogng

http://www.balabit.com/products/syslog_ng/

Dave Nardoni CISSP
First Response Consulting Services, Inc.
dnardoni () firstresponseconsulting com


-----Original Message-----
From: Stephane Auger [mailto:stephaneauger () pre2post com]
Sent: Tuesday, October 12, 2004 1:26 PM
To: security-basics () securityfocus com
Subject: Event log monitoring

Hey everyone,

  I'm looking for a practical way to monitor event logs on multiple servers.  There are multiple subnets at multiple 
sites, and I have one main LAN to monitor everything.  Is there some kind of software/batch file that could be 
installed on the servers so that the events be sent on my monitoring lan (a little bit like SNMP sending to a listening 
server)?  Thanks!!

Stephane Auger, MCP

Current thread:

Event log monitoring Stephane Auger (Oct 13)
- Re: Event log monitoring Josh Mills (Oct 13)
- RE: Event log monitoring David Nardoni (Oct 14)
- RE: Event log monitoring Kurt (Oct 14)
  - RE: Event log monitoring s b (Oct 18)
- <Possible follow-ups>
- RE: Event log monitoring Osvaldo Casagrande (Oct 14)
- RE: Event log monitoring Kurt (Oct 15)
- RE: Event log monitoring Ryan Murphy (Oct 15)
  - RE: Event log monitoring Kurt (Oct 18)
- RE: Event log monitoring Julen C (Oct 18)
- RE: Event log monitoring Tran, Nhon (Oct 19)
- Re: Event log monitoring nanoLox (Oct 19)
- RE: Event log monitoring Bhavani Suresh (Oct 20)