Re: Any experience with LogRhythm appliances?.....or similar "log mgmt" products?

[Jason Frisvold <frisvolj () LAFAYETTE EDU>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 06/14/2010 04:17 PM, Walter Petruska wrote:
> We're using AlertLogic which operates as a SaaS model, with on-site
> collection appliances.
>
> The basic features, searching, reports, correlation, alerts etc. are there-
> plus the fact that it gets our logs off-site for additional protection.
>
> Very competitive pricing for our needs- and certainly much easier than the
> proliferation of log repositories we used to have.
> The SaaS model removes the high up-front capital costs and puts maintenance
> and patching the system into their bucket of responsibilities.

Wow...  so you're sending all of your logs "to the cloud" and managing
them that way?  What sorts of logs are you sending there?  Both
sensitive and non-sensitive logs?  What information did they provide you
about security, encryption, etc?

> Walter Petruska, CISSP, CISA, CGEIT
> Information Security Officer
> University of San Francisco


- -- 
- ---------------------------
Jason Frisvold
Network Engineer
frisvolj () lafayette edu
- ---------------------------
"What I cannot create, I do not understand"
   - Richard Feynman
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAkwX4oYACgkQO80o6DJ8UvlRigCeJP6CpsS5BRzPojCFFypKjki8
r8QAnR5QY0wZZB8rAOOiO4AcmNV800qV
=gKpq
-----END PGP SIGNATURE-----