How to weed through the mounds of logs after a security breech to find out what went wrong.
The problem is sorting through the pile of information to weed out the 95% you don’t want, to get to the 5% you want to see, and finally to the .10% where your answers lie.
I love these interview questions and 100% agree with them.
It is difficult sometimes to find an engineer who would go that extra step. I often find engineers don’t have the curiosity to tinker with things to make them better. They often fall inline and satisfy with status quo.
Anyways, great read.
Abe Singer, San Diego Supercomputer Centre’s open systems security expert, will discuss logging infrastructure analysis which describes how to build an infrastructure to collect, preserve, and extract useful information from computer operating systems and application logs. Log analysis helps system administrators learn more about what is happening on their systems and networks.
Great article by Drew Robb on log management.
My article on computerworld.
These are scary figures that are sure to keep all CIOs, IT directors and managers up at night. According to the report, “The Cost of Enterprise Downtime, North America 2004,” conducted by Infonectics Research, network downtime is costing companies 3.6 percent of annual revenue. After studying over 80 large corporations, Infonectics Research found that companies [...]
More...OpenSIMS provides a way for tying together the open source tools used for security management into a common infrastructure. It leads toward the development of new SIMS technologies that allow different networks using risk metrics to collaborate on attacker profiling and remediation. Learn More >> Don’t know a whole lot about this, but if you [...]
More...My article, Insecurity through obscurity, has been posted on Computerworld. Opinion: Software developers should heed the writings of a 19th century cryptographer, who can teach them a thing or two about designing security into their products, says columnist Jian Zhen.
More...Report: IT shops lax about logging If a new report from the SANS Institute is any indication, enterprises are jeopardizing security by taking a sloppy approach to log keeping. As a result, the report recommends some companies abandon home-grown logging systems in favor of commercial tools or simply outsource the task.
More...
Disclaimer: This is my personal blog. The opinions expressed in this blog are the views of the writer and do not necessarily reflect the views and opinions of VMware.