Windows Event Logs
From: Floyd Russell (floyd_at_neospire.net)
Date: 06/19/03
- Previous message: Jake Frost: "Filtering DHCP Assignments by MAC Address"
- Next in thread: Brad Judy: "RE: Windows Event Logs"
- Reply: Brad Judy: "RE: Windows Event Logs"
- Maybe reply: Floyd Russell: "RE: Windows Event Logs"
- Maybe reply: Levinson, Karl: "RE: Windows Event Logs"
- Reply: Gavin Lowe: "RE: Windows Event Logs"
- Maybe reply: David Vincent: "RE: Windows Event Logs"
- Reply: Mike Lyman: "RE: Windows Event Logs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <focus-ms@securityfocus.com> Date: Thu, 19 Jun 2003 13:27:59 -0500
In my years of admining windows servers the event logs have always been
frustratingly incomplete. This is especially true with the Security logs.
For example if an attempted logon fails, it records the event, but seeminly
nothing else of importance like an IP.
Are there any tools out there that either allow admins a finer control over
what activities happen on the host or any that can pull such information
from the event logs?
Thanks,
Floyd R.
-----------------------------------------------------------------------------
------------------------------------------------------------------------------
- Previous message: Jake Frost: "Filtering DHCP Assignments by MAC Address"
- Next in thread: Brad Judy: "RE: Windows Event Logs"
- Reply: Brad Judy: "RE: Windows Event Logs"
- Maybe reply: Floyd Russell: "RE: Windows Event Logs"
- Maybe reply: Levinson, Karl: "RE: Windows Event Logs"
- Reply: Gavin Lowe: "RE: Windows Event Logs"
- Maybe reply: David Vincent: "RE: Windows Event Logs"
- Reply: Mike Lyman: "RE: Windows Event Logs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
