I agree. Winlogd on the servers, and syslogd on Linux/FreeBSD as the central log repository.
http://www.edoceo.com/products/winlogd.php Here's another option for a Windows syslog server (I haven't tried it): http://www.balabit.com/products/syslog_ng/ Bill Stout www.greenborder.com -----Original Message----- From: Packet Man [mailto:[EMAIL PROTECTED] Sent: Friday, April 28, 2006 5:22 PM To: Felipe Kaufmann Cc: [email protected] Subject: Re: syslogs for windows Felipe Kaufmann wrote: > Hi there, > > I'm in need of a syslog server running on Windows, in order to gather > syslog messages from UNIX hosts. I also want to parse those messages > with some kind of rule system and, if necessary, forward critical Check out Snare: http://www.intersectalliance.com/snareserver/index.html Although, I would prefer running the central logserver on Linux or BSD for higher security. -- Excellence in InfoSec and Linux http://www.altsec.info ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------ ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------
