[Chugalug] Monitoring and Log collection suggestions please

Christopher Rimondi chris.rimondi at gmail.com
Thu Nov 15 20:28:37 UTC 2012


I guess it all depends on what you are trying to log, but I like OSSEC a
lot. If you haven't taken a look at Security Onion yet you need to. It
takes less than ten minutes to get rolling and it comes with an OSSEC
server already installed (although it is not difficult to build from source
on your own box). You can also set up ELSA on Security Onion. ELSA is not
quite Splunk (yet) but if you want raw, fast indexing and searching of logs
it does the trick.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://chugalug.org/pipermail/chugalug/attachments/20121115/6ba4820c/attachment.html>


More information about the Chugalug mailing list