Splunk is pretty awesome and free if you have under 500MB of log data a day. It's actually extremely easy to set up and use. As mentioned, you can go agentless if it's too much of a hassle to set up the systems.
Sent from my iPhone On Jul 10, 2012, at 7:10, Brian Schultz <[email protected]> wrote: > So I recently started a new job at a small-ish hospital and was tasked with > setting up something that can audit security logs. It sounds and is pretty > vague, but this is for HIPAA compliance. I'm more of an infrastructure guy > and haven't had a chance to deal with security much and my only exposure is > really through the podcast. I have no idea what products are out there to do > these things. The environment here is about 99.99% Windows. I was taking a > look at Solarwinds Log and Event Manager which looks pretty good so far, but > it also requires an agent to be installed on any machines you want to monitor > which can be a hassle. > > Is there anything else that I should be taking a look at? GFI Events Manager > or some open-source solution? > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
