SecurityPortal: Ask Buffy – ports; log search tools, DNS – UDP or TCP

April 13, 2001, 7:21 am

From SecurityPortal: Ask Buffy – ports; log search tools, DNS – UDP or TCP [via Linux Today]:

Log Tool

We have all these NT 4.0 logs, but it there a tool that can help sift
through information and present it with meaning? With regard to security,
I just want to get to the information that I need. I need to get to this
information quickly. Do you have any suggestions?

Kevin M Moker
 

This is a subject for which there is a ton of information available.
There is an excellent FAQ available at:

http://www.heysoft.de/nt/eventlog/faq.htm

And an entire book on the subject available from O’Reilly:

http://www.oreilly.com/catalog/winlog/

As for actual products that will monitor your log files and respond to
events, there are several dozen solutions; for example:

http://www.sql-server-performance.com/event_log_monitor.asp

http://www.ipsentry.com/dlfiles/addins/ipsevmon.htm

http://www.eventreporter.com/

You can also export NT event logs, using a variety of products, to UNIX
syslog machines and use your favorite syslog monitoring tool.

Buffy (buffy@securityportal.com)

Category: LINKS, security  |  Comment  |  

Security for Web Database Applications

April 13, 2001, 7:14 am

Security for Web Database Applications. You know you want to protect yourself, and your database. Here’s how. [WebReview.com]

Category: LINKS, security, web  |  Comment  |  

Why UDDI Will Succeed, Quietly

April 13, 2001, 7:10 am

Brent Sleeper: Why UDDI Will Succeed, Quietly. [Scripting News]

Category: arch, LINKS  |  Comment  |  

Server-side scripting languages: PHP, Perl, Java servlets — Which one’s right for you?

April 12, 2001, 4:20 pm

IBM DeveloperWorks:
Server-side scripting languages:
PHP, Perl, Java servlets — Which one’s right for you?
Erik Zoltán (erik@zoltan.org),
Advanced Systems Engineer, EDS
[IBM DeveloperWorks]

Category: arch, LINKS, web  |  Comment  |  

Funny: Ballmer and Gates

April 12, 2001, 8:34 am

Funny:
Video with Ballmer and Gates in the car nodding and humming to the nerdy tune. [Scripting News]

Category: LINKS, misc  |  Comment  |  

Best Practices For VPN Implementation

April 10, 2001, 7:45 am

Best Practices For VPN Implementation. Business Communications Review Apr 10 2001 2:46AM ET [Computer security news]

Category: LINKS, security  |  Comment  |  

Remaking the Meeting-Cam

April 9, 2001, 3:25 pm

MIT Technology Review: Remaking the Meeting-Cam. Apart from cost, the presence of a cameraperson–usually an outsider–has a psychological impact that tends to change the dynamics of group meetings or lectures. The researchers attacked both problems by designing a system that mimics the actions of human camera operators. [Tomalak’s Realm]

Category: LINKS, misc  |  Comment  |  

Caldera Security Update: remote root exploit in ntpd

April 8, 2001, 2:15 pm

Caldera Security Update: remote root exploit in ntpd [Linux Today]

Category: LINKS, linux, security  |  Comment  |  

A useful website on 802.11b wireless

April 8, 2001, 10:36 am

A useful website on 802.11b wireless

Category: arch, LINKS  |  Comment  |  

Ntpd Remote Buffer Overflow Vulnerability

April 8, 2001, 10:28 am

Ntpd Remote Buffer Overflow Vulnerability [Security Focus]
No word from Sun or other major Unix vendors, yet.

Category: LINKS, linux, security  |  Comment  |  
« Previous Entries
Next Entries »