[Sans] syslog intrusion detection / anomaly

Nico Schottelius nico.schottelius at inf.ethz.ch
Tue Apr 5 18:04:57 CEST 2011

Previous message: [Sans] Next meeting: 20110427: cdist
Next message: [Sans] Reminder and Update for meeting tomorrow!
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hey sysadmins,

what tool do you use to (try to) detect anomalies / intrusions
on your systems?

I'm especially interested in tools operating on the syslog output.

Cheers,

Nico

-- 
Systems Group Sysadmin        Tel: +41 (0) 44 632 76 09        D-INFK/ETH Zurich

Previous message: [Sans] Next meeting: 20110427: cdist
Next message: [Sans] Reminder and Update for meeting tomorrow!
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Sans mailing list