RE: Logging

[Scott Williamson <swilliamson () choicepay com>]

We have had good luck with the Adventnet Eventlong Aanalyzer.  Supports both windows eventlogs as well as syslog.  We 
are currently collecting, storing, and searching over 6 million logs a day.  They have canned SOX and PCI reports as 
well as the ability to create custom queries.  Might want to give them a look.

-Scott

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Krzyston, Randy
Sent: Friday, January 18, 2008 12:19 PM
To: security-basics () securityfocus com
Cc: listbounce () securityfocus com
Subject: Logging

We are looking to implement a syslog server.  It needs to not only be
capable of storing logs ,but also detailed reporting for things such as
SOX.  I've looked at LogLogic's products.  I also heard about Kiwi, but
have not experience with it.

Any comments?


Randy

DISCLAIMER:

This e-mail is only intended for the person(s) to whom it is addressed and may contain confidential information. If you 
have received this e-mail in error, please notify us immediately by reply e-mail and then delete this message from your 
system. Please do not copy it or use it for any purposes, or disclose its contents to any other person without the 
consent of the sender. Unless expressly stated herein to the contrary, only agreements in writing, signed by an 
authorized officer of the Company, may be enforced against it.