Re: Log management

[Jeff Giacobbe <giacobbej () MAIL MONTCLAIR EDU>]

Charles-

I've heard good thinks about Splunk (splunk.org) though I haven't really
kicked the tires myself yet. Splunk can index and search all kinds of
system and network log data in near real-time and has some alerting
functions as well.

It's free for up to 500MB of log data per day. More than that requires a
license.

--
Jeff Giacobbe
Director of Systems, Security, and Networking
Montclair State University


Charles L. Bombard wrote:
> Hey everyone,
>
>       What would you all recommend for central log management? We are
> currently looking at GFI eventmanager. The ideal solution will combine
> the monitoring of both windows and linux logs, and have the ability to
> generate alerts based on our settings.
>
>       Recommendations of things to look at as well as things to avoid
> is appreciated.
>
> -Charlie
>
> ==========================================
>
> Charles Bombard, GSEC
> LAN/Systems Administrator
> Community College of Vermont
> 119 Pearl Street
> Burlington, VT 05401
> 802.657.4234
> bombardc () ccv edu
>
> PRIVACY & CONFIDENTIALITY NOTICE: This message is for the designated
> recipient only and may contain privileged, confidential, or otherwise
> private information. If you have received it in error, please notify the
> sender immediately and delete the original. Any other use of an email
> received in error is prohibited.