Balabit.hu, the creators of syslog-ng, seems to have developed larger plans: taking over the world of logging :-)
In this post called "A silent explosion", they say: "At first sight, logging infrastructure might seem simple, and log management trivial. This might have been true in the past, but nowadays it is unarguably a process of strategic importance, and not only because of the standards or regulations. Information is power, and you cannot guarantee the security of a large IT system without logs. The idea is simple: Collect the logs to a central place, preferably using an encrypted channel. Get proper filtering and archiving. Finally, add some intelligence and analyzing capabilities, and you will know what is happening on your network."
I am so looking for what they will come up with ...
2 comments:
I am too, because LogLogic is expensive!
Sorry for a fluffy answer, but isn't 'expensive' relative? LL is waaaaaaay cheaper than some of the other similar solutions.
Post a Comment