[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <AANLkTim200bm+TnTzgyqxM3bjZ69=08Csd1niS7ntCy4@mail.gmail.com>
Date: Mon, 14 Feb 2011 15:11:10 +0100
From: Daniël W. Crompton <daniel.crompton@...il.com>
To: "Cal Leeming [Simplicity Media Ltd]" <cal.leeming@...plicitymedialtd.co.uk>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: High performance exception/traceback
reporting system
On 14 February 2011 09:04, Cal Leeming [Simplicity Media Ltd] <
cal.leeming@...plicitymedialtd.co.uk> wrote:
<...snipped for brevity...>
> I'd never heard of SIEM before, after looking on wikipedia I came across
> "NitroSecurity" SIEM which sure does look interesting. I'm gonna have a
> flick through some of these sites for some inspiration, this may end up
> turning in quite a big project!
>
In the past I've worked with a number of Security Incident and Event
Management[1] (SIEM) products, although I can attest to the functionality
NitroSecurity I assume it is quite similar. One of the primary faults I've
experienced was that they lacked the ability to extract useful information
from stacktraces as they have the potential to be more dynamic than the
usual messages they deal with, which are usually oneline with predictable
field values.
D.
[1] http://en.wikipedia.org/wiki/SIEM
blaze your trail
--
Daniël W. Crompton <daniel.crompton@...il.com>
<http://specialbrands.net/>
<http://specialbrands.net/>
http://specialbrands.net/
<http://twitter.com/webhat>
<http://www.facebook.com/webhat><http://plancast.com/webhat><http://www.linkedin.com/in/redhat>
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists