|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: IDS: Uniform log format?
From: Soeren Brandbyge (sab
brandbyge.dk)Date: Mon Nov 20 2000 - 19:15:34 CST
- Next message: Steven M. Christey: "Re: IDS: access.log monitoring?"
- Previous message: Steven M. Christey: "Re: IDS: access.log monitoring?"
- Next in thread: Aigars Grins: "IDS: Re: Uniform log format?"
- Reply: Aigars Grins: "IDS: Re: Uniform log format?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
HELP: Having problems... email questions to ids-owneruow.edu.au
NOTE: Remove this section from reply msgs otherwise the msg will bounce.
SPAM: DO NOT send unsolicted mail to this list.
UNSUBSCRIBE: email "unsubscribe ids" to majordomouow.edu.au
-----------------------------------------------------------------------------
Hi All
I'm currently participating in a project aiming at multivariate analyzis
of huge amounts of log-data. Our aim is to infer models signifying
long-term traffic-patterns of suspect activity denoting a hacking
activity.
The logs are comming from a wast amount of systems (routers, firewalls,
applications gateways, e.t.c.)
I was curious; are there any previous work within the field of defining
a common logformat that could embrace all the mentioned sources? Any
pointers?
S.Brandbyge
Sen.Sys.Adm.
- Next message: Steven M. Christey: "Re: IDS: access.log monitoring?"
- Previous message: Steven M. Christey: "Re: IDS: access.log monitoring?"
- Next in thread: Aigars Grins: "IDS: Re: Uniform log format?"
- Reply: Aigars Grins: "IDS: Re: Uniform log format?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]