Security Basics mailing list archives

RE: Event log monitoring

From: "Kurt" <kurtbuff () spro net>
Date: Wed, 13 Oct 2004 15:41:30 -0700

http://ntsyslog.sourceforge.net or http://intersectalliance.com/snare -
will send your eventlogs to a syslog server in realtime

http://kiwisyslog.com - a very good syslog server for Windows, and if
you pay for it (it's very inexpensive for the impressive quality), it'll
even log to an ODBC DSN

http://mysql.com - A free SQL database server, with an ODBC interface,
both Windows and *nix.

Pretty much all you need.

| -----Original Message-----
| From: Stephane Auger [mailto:stephaneauger () pre2post com]
| Sent: Tuesday, October 12, 2004 13:26
| To: security-basics () securityfocus com
| Subject: Event log monitoring
| 
| 
| Hey everyone,
| 
|   I'm looking for a practical way to monitor event logs on multiple
| servers.  There are multiple subnets at multiple sites, and I have one
| main LAN to monitor everything.  Is there some kind of software/batch
| file that could be installed on the servers so that the events be sent
| on my monitoring lan (a little bit like SNMP sending to a listening
| server)?  Thanks!!
| 
| Stephane Auger, MCP

Current thread:

Event log monitoring Stephane Auger (Oct 13)
- Re: Event log monitoring Josh Mills (Oct 13)
- RE: Event log monitoring David Nardoni (Oct 14)
- RE: Event log monitoring Kurt (Oct 14)
  - RE: Event log monitoring s b (Oct 18)
- <Possible follow-ups>
- RE: Event log monitoring Osvaldo Casagrande (Oct 14)
- RE: Event log monitoring Kurt (Oct 15)
- RE: Event log monitoring Ryan Murphy (Oct 15)
  - RE: Event log monitoring Kurt (Oct 18)
- RE: Event log monitoring Julen C (Oct 18)
- RE: Event log monitoring Tran, Nhon (Oct 19)
- Re: Event log monitoring nanoLox (Oct 19)
- RE: Event log monitoring Bhavani Suresh (Oct 20)