• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Harvesting security event logs..

I

imported_nerve

Senior member
Hi,

I was wondering if anyone harvests security audit records off of pc's on a domain?

I currently use a script that harvests and puts them in a text file. I review them weekly.

Does anyone have any solutions for this?

I am currently running a w2k server and will be moving to a 2k3 box soon.

Any help would be great.

Thanks

 
If you have some Linux know how OSSEC HIDS can help with this.

For windows logs I've generally seen 3rd party syslog clients installed and pointed at a syslog server (generally running some *nix or proprietary software).
 
Thanks man, i will definitely check out eventlog xp!! i need something like this!

edit: on first use it looks pretty nice!!
 
If your network is a bit larger, a commercial Security Information and Event Management (SIEM) such as ArcSight will do the trick. They're not cheap though.
 
Originally posted by: WobbleWobble
If your network is a bit larger, a commercial Security Information and Event Management (SIEM) such as ArcSight will do the trick. They're not cheap though.
Click to expand...

Especially when you throw in the full time people necessary to keep it running well.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top