Re: [Fed-Talk] FAAS: want to help?
Re: [Fed-Talk] FAAS: want to help?
- Subject: Re: [Fed-Talk] FAAS: want to help?
- From: "Krage, Joshua (GSFC-7000)" <email@hidden>
- Date: Fri, 05 Oct 2012 15:01:41 -0500
- Acceptlanguage: en-US
- Thread-topic: [Fed-Talk] FAAS: want to help?
As alternatives to Splunk, take a look at Greylog2 and LogStash.
Graylog2:
http://graylog2.org/
LogStash:
http://logstash.net/
Splunk is indeed really good. The challengers are looking quite interesting.
On Oct 4, 2012, at 11:09 AM, Joel Peterson wrote:
> Splunk really is the best thing since sliced bread. I don't know why there
> isn't more of it in Government. Being able to log and grep an entire
> transaction across the nation through hundreds of different systems would
> be killer.
>
> Joel Peterson
> email@hidden
>
>
> On 10/4/12 7:20 AM, "Valentine, Colin M." <email@hidden> wrote:
>
>> If you don't have much data, Splunk is "free" for < 500MB/day.
>>
>> http://www.splunk.com/
>>
>> Their marketing :-)
>>
>> http://www.splunk.com/view/fisma-compliance/SP-CAAACPP
>>
>> Colin
>>
>> --
>> Colin Valentine
>> MITRE
>> cell: 339-223-6814
>> Office: 781-225-9213 DSN: 845-9213
>>
>>
>>> -----Original Message-----
>>> From: fed-talk-bounces+val=email@hidden [mailto:fed-talk-
>>> bounces+val=email@hidden] On Behalf Of Todd Heberlein
>>> Sent: Wednesday, October 03, 2012 20:25
>>> To: Fed Talk
>>> Subject: [Fed-Talk] FAAS: want to help?
>>> Importance: High
>>>
>>> Hi guys,
>>>
>>> Want to turn a Mac web server into an audit data server?
>>>
>>> I've found that a lot of groups don't have an audit server yet. I have
>>> some
>>> hand written PHP code on my web server to collect my processed results,
>>> and I thought I would basically expand the approach. I'm going to write a
>>> small (and *free*) OS X app that will essentially be a wizard that, after
>>> entering some basic information, will spit out some code, scripts, and
>>> configuration files to help you create an audit aggregation server out
>>> of your
>>> web server on your Mac web server.
>>>
>>> Since my lab is tiny, and I have less regulatory issues than most of
>>> you, I
>>> would *love* to get some feedback on the design and some brave
>>> volunteers willing to test the code and help refine it. If you think
>>> this might
>>> be something that can help your group, please let me know.
>>>
>>> I've started putting together some web pages, and I'll start coding it
>>> up this
>>> week.
>>>
>>> Free Audit Aggregation System (FAAS) home:
>>> http://www.netsq.com/Tools/FAAS/
>>>
>>> Concept paper (HTML):
>>> http://www.netsq.com/Tools/FAAS/Concept/
>>>
>>> Concept paper (PDF):
>>> http://www.netsq.com/Tools/FAAS/Concept/FAAS_intro.pdf
>>>
>>> Todd
>>>
>>> PS. It is "FISMA inspired" but I make no claims that it will help make
>>> you
>>> "FISMA compliant" (I have no marketing department :)
>>>
>>> _______________________________________________
>>> Do not post admin requests to the list. They will be ignored.
>>> Fed-talk mailing list (email@hidden)
>>> Help/Unsubscribe/Update your Subscription:
>>>
>>> This email sent to email@hidden
>>
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Fed-talk mailing list (email@hidden)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>>
>
>
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden