I haven't used recent versions, but the original used MS Access for the back end database. The challenge was it was slow as well as limited in the # of records it could store. At ~1,000,000 it would lock up.
-----Original Message----- From: Kevin Lisciotti [mailto:[EMAIL PROTECTED]] Sent: Monday, January 21, 2002 10:09 AM To: 'Smith, Chris'; 'Fabrice besson'; [EMAIL PROTECTED] Subject: RE: looking for logs analysis infrasctructure Have you taken a look at PrivateI from http://www.opensystems.com ?? -----Original Message----- From: Smith, Chris [mailto:[EMAIL PROTECTED]] Sent: Friday, January 18, 2002 9:01 PM To: 'Fabrice besson'; [EMAIL PROTECTED] Subject: RE: looking for logs analysis infrasctructure Netforensics will parse syslog and snmp traps from multiple devices/vendors, not sure if apache is currently included. It includes reporting capabilities for event correlation, etc., and supposedly will include an XML interface for custom extensibility. Current issues include no real-time correlation and $$$$. -----Original Message----- From: Fabrice besson [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 17, 2002 2:51 AM To: [EMAIL PROTECTED] Subject: looking for logs analysis infrasctructure Hello Folks I have been searching for a advanced log analyzer that I can use on my network/systems for IDS purpose. - Ability to specify pattern - Correlation between events - Manage multi log files format (from firewall to appache log ...). - Ability to rebuild a session attack with different log file (log correlation). Which solution for heterogeneous environment ? TIA Fab ___________________________________________________________ Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en fran�ais ! Yahoo! Courrier : http://courrier.yahoo.fr
