Definition of Logging
What is Logging?
Logging is the practice of recording, in some medium, sequential input, often in a time-associated format.
|
|
Logging
|
|
Remote Syslogging - A Primer
The syslog daemon is a very versatile tool that should never be overlooked under any circumstances. The facility itself provides a wealth of information regarding the local system that it monitors.
Read the Article
|
How to perform network-wide security event log monitoring
This white paper explains the need to monitor security event logs network-wide and how you can achieve this using GFI LANguard S.E.L.M. It is written by Randy Franklin Smith, author of the in-depth series on the Windows security log in Windows 2000 & .NET Magazine.
Read the Article
|
How to detect hackers on your web server
A discussion of the methods used by hackers to attack IIS web servers, and how you can use event log monitoring on your web server to be alerted to successful attacks immediately.
Read the Article
|
Using events-per-second as a factor in selecting Security Event Management tools
Events Per Second, or EPS, as it is commonly referred to in the world of network security, is a measurement that is used to convey how fast a network generates data from its security devices (firewalls, Intrusion Detection Systems (IDS), servers, routers, etc.), and/or how fast an SEM product can correlate data from those devices. A savvy buyer will match the EPS his network is generating to those that can be accommodated by the SEM tool that he is purchasing. For the purpose of this article, we define the EPS that can be accommodated by an SEM tool more precisely as the number of security-related events a product can receive, normalize, analyze/correlate, and display or act on in the form of results within an acceptable time frame.
Read the Article
|
A Unix Perspective on Oracle Archive Redo Log Files
In this article, I will review archived redo log files (ARLFs) from an SA perspective, without the need to log in to the database or use SQL statements. I will cover where archived ARLFs come from, where they go, what they contain, how their use has evolved over time, and how they can make or break your system. A summary checklist of issues and questions will be provided that the SA and DBA can review together to help ensure improved support and coverage.
Read the Article
|
Writing syslog messages to MySQL
In this paper, I describe how to write syslog messages to a MySQL database. Having syslog messages in a database is often handy, especially when you intend to set up a front-end for viewing them. This paper describes an approach with rsyslogd, an alternative enhanced syslog daemon natively supporting MySQL. I describe the components needed to be installed and how to configure them.
Read the Article
|
An Approach to UNIX Security Logging
Off-line intrusion detection systems rely on logged data. However, the logging mechanism may be complicated and time-consuming and the amount of logged data tends to be very large. To counter these problems we suggest a very simple and cheap logging method, light-weight logging. It can be easily implemented on a Unix system, particularly on the Solaris operating system from Sun. It is based on logging every invocation of the exec(2) system call together with its arguments. We use data from realistic intrusion experiments to show the benefits of the proposed logging and in particular that this logging method consumes as little system resources as comparable methods, while still being more effective.
Read the Article
|
|
|
Page: 1 2 3
Members currently browsing this category:
|
|
