Security Basics mailing list archives

Re: SIM Suggestions

From: "Kurt Buff" <kurt.buff () gmail com>
Date: Thu, 31 Jul 2008 12:22:55 -0700

On Wed, Jul 30, 2008 at 8:01 AM, Ramki B Ramakrishnan <bramkie () gmail com> wrote:

Splunk is good for log analysis and AFIK more economical...

http://www.splunk.com/applications

Any views on Splunk would add value to this thread.

-----
Ramki B. Ramakrishnan
Security Enthusiast
GIAC:GSEC, CvA


Yes, I have a view. I just took a look at their pricing, and there is
no way on Earth I can afford their pricing. Between my Windows
servers, my *nix servers and my firewall, I generate easily 2gb of
logs to my syslog server daily, and I don't log all I'd like to
gather. But, for a manufacturing company with fewer than 300 people,
this will never fly.

Insanely overpriced, and no matter how good it is, I'll not be able to use it.

Bummer.

Kurt

Current thread:

RE: SIM Suggestions, (continued)
- - - RE: SIM Suggestions Ramki B Ramakrishnan (Jul 30)
- RE: SIM Suggestions Tariq Naik (Jul 29)
- RE: SIM Suggestions Ramki B Ramakrishnan (Jul 29)
- Re: SIM Suggestions ॐ aditya mukadam ॐ (Jul 29)
- RE: SIM Suggestions Mike Theriault (Jul 29)
  - Re: SIM Suggestions Vu Anh Tu (Jul 30)
    - Re: SIM Suggestions David Gadoury (Jul 31)
    - Re: SIM Suggestions Albert R. Campa (Jul 31)
    - Re: SIM Suggestions ॐ aditya mukadam ॐ (Jul 31)
    - RE: SIM Suggestions Ramki B Ramakrishnan (Jul 31)
    - Re: SIM Suggestions Kurt Buff (Jul 31)
- Re: SIM Suggestions Kurt Buff (Jul 31)