RE: Auditing & Reporting Access to Files on File Server

["IT \(Hafeez Abdul Rahman\)" <HafeezR () emiratesNBD com>]

If it's a FIM(file integrity Monitoring) tool then I'd say Tripwire helps.
Its also got a configuration management module with it..


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of mjd
Sent: Saturday, September 17, 2011 1:28 AM
To: security-basics () securityfocus com
Subject: Auditing & Reporting Access to Files on File Server

Our organization is looking for a way to do better auditing and
reporting on sensitive files access on our file server.  For example,
we'd like to be able to generate a report showing who accessed and/or
modified sensitive documents on ServerA\SharedFolderB.

Now we currently do this through our SIEM which stores all logs
generated by Windows/AD.  However, the reports we create are very
clunky and very difficult to read.

I'd like to solicit anyone's feedback on the different solutions that
you've used in order to accomplish what we're trying to do.

thanks!

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------



DISCLAIMER:
"This e-mail message including any of its attachments is intended solely for the addressee(s) and may contain 
privileged information. If you are not the addressee or you have received this email message in error, please notify 
the sender who will remove your details from its database. You are not authorized to read, copy, disseminate, 
distribute or use this e-mail message or any attachment to it in any manner and must delete the email and destroy any 
hard copies of it. 
This e-mail message does not contain financial instructions or commitments of any kind. Any views expressed in this 
message are those of the individual sender and do not necessarily reflect the views of Emirates NBD PJSC, or any other 
related subsidiaries, entities or persons."

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------