[logs] History of Log Analysis and Modern Search Engine
Anton Chuvakin
anton at chuvakin.org
Fri Jul 6 14:47:29 PDT 2007
> I'd like to add some historical perspective to
> logs and their strong link to search engines in
> Wikipedia.
Since I am feeling pretty warlike now :-) I would like to explore this
further: why do you think that there is a link between log analysis
and search engines (apart from whatever historical one)? Searching
logs, while necessary sometimes, is certainly not a fun thing and,
just as certainly, not the most effective way to make sense of logs.
Maybe, just maybe, search the web is the best way to make sense of the web.
However, I can't say the same about logs.
Just today I was helping investigate this fun incident where logs from
a compromised server was the only evidence available. Figuring out
"what to search for" is pretty much a non-starter...
Best,
--
Anton Chuvakin, Ph.D., GCIA, GCIH, GCFA
http://www.chuvakin.org
http://chuvakin.blogspot.com
http://www.info-secure.org
More information about the LogAnalysis
mailing list