Here is great post that casts some "much needed" :-) confusion onto the space of computer log analysis:
Cfrln » Blog Archive » IT Search Engine vs. Log Consolidator - what’s the difference?: "But they simply do not provide the easy, instantaneous search of everything on your network."
So if some "log consolidator" or a SIEM product starts doing searches really well, than the above argument becomes completely empty...
No comments:
Post a Comment