You thought I am done with my Top 11 lists? Nah... here is one more, which actually is designed to bite you in the ass on a certain date. So, "Top 11 Reasons to HATE Logs ... With a Passion."
- Read any logs lately? Got bored in 5 minutes - or survived for the whopping 10? Congrats, you score a point! But logs are still boooooooooooooooooooooooooooooring.
- One log, two logs, 10 logs.... 1,000,000,000 logs: rabbits and hamsters cannot match the speed with which logs multiply. Don't you just hate that?
- You keep hearing people refer to "log data." Then you run 'tail /var/log/messages' and see text in pidgin English. Where is my data? Hate it!
- "Real hackers don't get logged": thus logs are seen as useless - and hated by some "hard core" security pros!
- If people lie to you, you hate it. Logs do lie too (see 'false positives') - and they are hated too.
- 'Transport error 202 message repeated 3456 times.' Niiiiice. Now go fix that! Fix what? Ah, hate the log obscurity!
- Why are there 47 different ways to log that "connection from A to B was established OK?" Or 21 way to say "user logged in OK?" No, really? Why? Who can I kill to stop this insanity?
- You MUST do XYZ with logs for compliance. Or you are going to jail, buddy! No, sorry, we can't tell you what XYZ is. Maybe in 7 years; for now, just store everything.
- 'Critical error: process completed successfully' and 'Operation successfully failed' engender deep and lasting hatred of logs in most people. They just do ...
- The book called "Ugliest Logs Ever!" is a fat tome, covering every log source from a Linux system all the way to databases and CRM. Bad logs are popular! Bad logs are all the rage among the programmers! Bad logs are here to stay. Bad logs that mean nothing power the log hatred.
- "Logs: can't live with them, can't live without them" :-) Hate them we might for different reasons, but we still must collect, protect, review, and analyze them ...
Happy September 1st! :-)
No comments:
Post a Comment