You're sitting on DNS logs and not getting enough out of them. Use @AlphaSOC_ to quickly gain meaningful insights: http://alphasoc.com
-
-
not the analysis part, the "you have logs" bit... organizational failure when it comes to logs in general esp. DNS...
-
Quixotic windmill battles for years on end over it, too
-
I think orgs also avoid turning on DNS logging b/c they don't know what they'd do with them. This makes it easy.
-
Maybe so, but I would also say "nothing Splunk" is free. My saying put logs there is formula to be ignored. Sad, but true
-
Maybe another jousting session is overdue. I don't mean to come across negatively, but would consider other solutions.
-
That's honest. There are people this helps, and people it won't. I think future versions may drop Splunk as a req.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.