RE: Log management software for Windows

["David Gillett" <gillettdavid () fhda edu>]

  I have used, and been pretty happy with, "SL4NT" (SysLog
for NT), on NT and 2000.  It provides a server application to
receive the log stream, and various options for what to do with 
the data.  (In my case, I've usually fed it to the Windows 
system Security Event Log, and then used Windows tools to 
capture and manipulate it from there.)

David Gillett


> -----Original Message-----
> From: Ken Burns [mailto:KCB () KCBurns com]
> Sent: October 16, 2003 13:30
> To: security-basics () securityfocus com
> Subject: Log management software for Windows
>
>
> Hello group,
>
> I want to retain security and event log data on a Windows 
> machine that is
> generated on other machines; for example: the IDS log from my 
> firewall.
> This is not as simple as retaining a file because the 
> firewall does not
> create a file (it has no hard drive).  The firewall is 
> equipped to export
> (stream) the log data to a computer (by IP address), but the Windows
> machine, without additional software, has no concept what 
> this incoming data
> stream is or what to do with it.  I understand that Linux 
> comes with log
> management software... but I want to use a Windows machine; 
> so, the question
> is: Do you know of any good but free or cheap log management 
> software that
> will run on a Windows machine?
>
> Thanks for any suggestions,
>
> Ken

---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
----------------------------------------------------------------------------