RE: Win2k log management

From: Kelly Fuller (kelly@ccgsecurity.com)
Date: 01/24/03

  • Next message: Laura A. Robinson: "RE: Bypass Traverse Checking?" 
    From: "Kelly Fuller" <kelly@ccgsecurity.com>
To: <defaillance@hushmail.com>, <focus-ms@securityfocus.com>
Date: Fri, 24 Jan 2003 17:11:49 -0500

    Try this. http://www.eventlog.com/

    EdumpEvt program can dump, extract, filter and schedule logs from any
    local logs.

    Kelly B. Fuller
    Network Security Engineer
    Continental Consulting Group
     
     
    -----Original Message-----
    From: defaillance@hushmail.com [mailto:defaillance@hushmail.com]
    Sent: Friday, January 24, 2003 1:04 PM
    To: focus-ms@securityfocus.com
    Subject: Win2k log management

    -----BEGIN PGP SIGNED MESSAGE-----

    I am currently administering over 10 server(advanced) and 20 workstation
    (pro), The management of event/security/application log has become
    unbeareable,so im looking for a centralized management solution were the
    informatin would be gather from server/workstation to a specific server,
    so the question is: Anyone aware of such a software
    that could do the job ? commercial or freeware, I basically just want to
    avoid having to walk over to check them manually.

    also if anyone who has faced this situation is willing to share
    their knowledge on the subject...

    Thanks
    -----BEGIN PGP SIGNATURE-----
    Version: Hush 2.2 (Java)
    Note: This signature can be verified at https://www.hushtools.com/verify

    wl8EARECACAFAj4xf/sZHGRlZmFpbGxhbmNlQGh1c2htYWlsLmNvbQAKCRAAqpYJlh8f
    xQ7GAJ9+/LTX1k/uD/cY6mzx8iPKehJGhgCY8S0SZc03cmWwXsZwQBpQ8K7Rog==
    =4gCk
    -----END PGP SIGNATURE-----

    Concerned about your privacy? Follow this link to get
    FREE encrypted email: https://www.hushmail.com/?l=2

    Big $$$ to be made with the HushMail Affiliate Program:
    https://www.hushmail.com/about.php?subloc=affiliate&l=427ili03EA8EE1BD1FAD46A6AB4525406795E1350CD3@ct2001.webcti.local

    Relevant Pages

    • RE: NIDS and HIDS
      ... using a Security Event Management product combined with open-source ... Use SEM agents to collect logs from servers ... Use SEM agent to collect logs written to flat file ... different approach in that we have seperated log management from event ...
      (Focus-IDS)
    • Re: SMS Client Push
      ... you may want to verify that the management point and other site systems ... you should have logs for each site system setup. ... I'm pretty new to SMS 2003 as well so Jed please verify what I have written. ...
      (microsoft.public.sms.setup)
    • Re: "proving" a user received an email (good gosh)
      ... >is there a way to tune the logs to report the message id of the email ... I don't know what your relationship is with your boss, ... If your boss is sending an E-mail message that's as important as this ... Technology is not a good substitute for management skills and common ...
      (comp.security.unix)
    • Re: "proving" a user received an email (good gosh)
      ... >is there a way to tune the logs to report the message id of the email ... I don't know what your relationship is with your boss, ... If your boss is sending an E-mail message that's as important as this ... Technology is not a good substitute for management skills and common ...
      (comp.security.unix)
    • Re: FW-1 and "monitoring client"
      ... information management correlation applications, such as Open's ... Security Threat Manager will analyze your FW logs (and ...
      (comp.security.firewalls)