Re: Recording policy changes from Sophos Enterprise Console 5.2 in LEM?
Thanks for the tip Garreth, It took me a while to actually find the connector for Sophos as only some are displayed under the appliance yet more can be found when looking at the node directly. Anyway...
View ArticleClik here to view.
Re: Is there any connector for Clearswift MIMEsweeper ?
Thank.We will open a case to create a such connector. Have you any idea about the time needed to create a connector ?
View ArticleBest Practices for SCCM Agent Deployment?
Hi all, Does anyone have some guidelines or best practices for this? We have to keep the change management folk happy and infored so it is mainly for their consumption. Thanks - Andy
View ArticleClik here to view.
Re: Does LEM offer a generic txt/log file connector that we can use to...
FYI support was kind enough to send me the new revision #5 for the iisftp connector and revision #6 for the globalscape connector. However I still wasn't seeing the path/filename in nDepth. A closer...
View ArticleKiwi Syslog and Log Forwarder
Greetings, We're evaluating the above product but can't seem to get the forwarder to work under win 2003 sp2....is it compatible, supported,...??! Many thanks in advance.
View ArticleRe: Is there any connector for Clearswift MIMEsweeper ?
Once the feature request is sent to our development team, they will consider the request, and decide whether it will be implemented. You may also post your request to the Thwack forum forLEM. Thwack...
View ArticleClik here to view.
Re: LEM Thoughts of the Week: What IT Security Buzzword Drives You Nuts?
something a prior boss said on a regular basis drove me nuts... "On a go forward basis"
View ArticleLEM Thoughts of the Week: Does Compliance Actually Make you More Secure?
We're posting this one a little early to make sure we catch folks reading the customer newsletter There's been a lot of chatter about this in the past, but with all the breaches recently, it makes you...
View ArticleRe: LEM Thoughts of the Week: Does Compliance Actually Make you More Secure?
While my SIO would disagree with me. I would say YES. If you are already protecting your data and following best security practices it makes the audit process much easier . It's definitely made us...
View ArticleRe: LEM Thoughts of the Week: What IT Security Buzzword Drives You Nuts?
BIG DATA is one of those buzz terms that I find frustrating because without context it doesn't have a lot of meaning yet you see it getting used constantly in the industry. While the term certainly...
View ArticleClik here to view.
Re: LEM Thoughts of the Week: Does Compliance Actually Make you More Secure?
In general, the process of getting formal (audited) compliance can greatly improve security - but it is usually the ***process of getting there*** that does so, the actual rubber stamps have sufficient...
View ArticleClik here to view.
Newbie Question
Is it possible to edit a non-agent node name? They are all showing up the same as the IP address because we cannot resolve them. Thanks in advance#! LR
View ArticleLEM versus ArcSight
I have been doing some research on SIEM and and SOC, specifically managed SOC's or MSSP's. I see that many of them use ArcSight as their SIEM/Log Management solution. I personally don't have any...
View ArticleClik here to view.
Re: LEM Thoughts of the Week: What IT Security Buzzword Drives You Nuts?
Big Data....yea right. Sales people try to keep selling me products to solve my Big Data issue. Then I tell them how much space I have in the SAN and they walk away. I am still dealing with small...
View ArticleLogs for Clearing/stopping Audit logging
Hi, I have installed LEM and configured Windows Application, Security, Active Response and Systems logs. I need to find the logs if someone stop. clear or access the Logs in Windows machines, where...
View ArticleRe: Logs for Clearing/stopping Audit logging
You would have to enable the rule first under build -> rules. Then you can set up our action (email)..etc.
View ArticleRe: LEM versus ArcSight
ArcSight provides three different log management products, so part of this question is dependent upon which ArcSight product is being compared. Those three products are Express, Logger, and ESM. Logger...
View Article