balabit

Background On 25 January, 2012, the European Commission has proposed a comprehensive reform of the EU’s 1995 data protection rules to strengthen online privacy rights and boost Europe’s digital economy. Technological progress and globalisation have profoundly changed the way our data is collected, accessed and used. In addition, the 27 EU Member States have implemented [...]

Zorp ensures reliable and controlled connectivity of network infrastructures with improved performance, security and stability BalaBit IT Security, one of the global leaders in developing privileged activity monitoring, trusted logging and proxy-based gateway technologies announced the general availability of Zorp 3.4, the feature release of its enterprise proxy firewall. As external and internal threats, such [...]

Valentijn has published a nice hack using syslog-ng to actively react to intrusion attempts with patterndb and iptables. The blocking part is implemented using iptables recent match that is capable of closing an opened port for certain amount of time. This is controlled by syslog-ng: whenever a  login failure is received, syslog-ng informs the recent [...]

Gábor Marosvári has begun his career as product marketing manager this week at BalaBit IT Security ltd. The interview with Gábor: Is it a new position at BalaBit or are you replacing a former product marketing manager? This is a newly created position at BalaBit. In the past, the marketing team was responsible in general [...]

I am glad to announce, that we have refreshed the exam system since 1011. All students can take exam the exam online. What kind of exams are available? Zorp maintener (BCZA): 50 questions. You need to answer well at least 30. Zorp expert (BCZE): 100 questions, maximum 150 points (difficult questions are 2 points). You [...]

I am glad to announce, that we have refreshed the exam system since 1011. All students can take exam the exam online. What kind of exams are available? Zorp maintener (BCZA): 50 questions. You need to answer well at least 30. Zorp expert (BCZE): 100 questions, maximum 150 points (difficult questions are 2 points). You [...]

Last weekend I visited Free and Open Source Developers’ European Meeting, or FOSDEM (http://fosdem.org/), as more widely known. It was held in Brussels, at the campus of ULB. Over 5000 hackers were present from all over Europe, and some also from overseas. There were many interesting and hot topics presented, including programming languages, databases, office [...]

Last weekend I visited Free and Open Source Developers’ European Meeting, or FOSDEM (http://fosdem.org/), as more widely known. It was held in Brussels, at the campus of ULB. Over 5000 hackers were present from all over Europe, and some also from overseas. There were many interesting and hot topics presented, including programming languages, databases, office [...]

Trusted logging infrastructure for over 40 platforms Budapest, Hungary – February 7, 2011 Press Release BalaBit IT Security, the technology leader in trusted log infrastructures and trusted log management, announced the new long-term-supported major release of syslog-ng Premium Edition Release 4.0 today. With broad market acceptance of its reliable logging technology – syslog-ng – across [...]

I think, it’s a frequent question how to increase the performance of syslog-ng. In the current post, I try to introduce how to set up syslog-ng to reach the best performance, if it receives messages from the network via TCP and stores them into file. These settings will affect to syslog-ng working as a server. [...]

I think, it’s a frequent question how to increase the performance of syslog-ng. In the current post, I try to introduce how to set up syslog-ng to reach the best performance, if it receives messages from the network via TCP and stores them into file. These settings will affect to syslog-ng working as a server. [...]

I got some interesting comments in a forum posting, outlining a perception how syslog-ng’s development is driven by BalaBit. The original post is here, but the interesting quote I’d like to react is this: @all Some general points: A main difference between rsyslog and syslog-ng is that syslog-ng is backed by a large commercial organisation [...]

I got some interesting comments in a forum posting, outlining a perception how syslog-ng’s development is driven by BalaBit. The original post is here, but the interesting quote I’d like to react is this: @all Some general points: A main difference between rsyslog and syslog-ng is that syslog-ng is backed by a large commercial organisation [...]

syslog-ng Premium Edition performance measurements results

syslog-ng Premium Edition performance measurements results

There’s a good writeup on syslog-ng correllation functions on LWN. Since it is currently for subscriber’s only, here’s a link that you can use to see until it is published. http://lwn.net/SubscriberLink/424459/dc2ec3fee7d80d3b/ LWN is a great publication by the way, so consider subscribing if you can.

There’s a good writeup on syslog-ng correllation functions on LWN. Since it is currently for subscriber’s only, here’s a link that you can use to see until it is published. http://lwn.net/SubscriberLink/424459/dc2ec3fee7d80d3b/ LWN is a great publication by the way, so consider subscribing if you can.

A short howto with step by step instructions on how to write a template function for syslog-ng open source edition.

A short howto with step by step instructions on how to write a template function for syslog-ng open source edition.

I will not tell you any secret by saying I use virtual machines a lot for testing different support cases I come across. I have used virtualization before but these cases were mostly limited to trying out different Linux / Unix distributions. Now my job has other aspects. For example if I would like to [...]

The interpretation of a tale of Yore, of syslog-ng, threading and a bright future.

The interpretation of a tale of Yore, of syslog-ng, threading and a bright future.

Hi, We have published the latest edition of The syslog-ng Premium Edition 4.0 Administrator Guide. This is again the result of a fruitful cooperation between the syslog-ng team and the technical writer team, and a long, but useful review period. The documents are now available on the BalaBit Documentation Page in PDF, HTML and single-page [...]

The base of our appliance products, SCB and SSB are heavily customized Ubuntu distributions. Most of them are based on the Dapper release, but starting with SCB 3.1, we started migrating them to the newest LTS, Lucid Lynx. Doing a direct upgrade from a 4 years old OS and switching from 32-bit to 64 at [...]

The syslog-ng3 port in FreeBSD was updated to 3.2.2. The new AppArmor package reached openSUSE factory today. This means, that there is no more need to disable AppArmor or edit profiles manually, syslog-ng can be used as is. Systemd will be available as an alternative in openSUSE 11.4. Bazsi, Marius and the openSUSE team are [...]

I am happy to tell you that Gentoo Linux now contains the latest syslog-ng open source edition version, which is 3.2.2. Although it is currently masked, you can easily install it with the following commands. echo -e “\n=app-admin/syslog-ng-3.2.2″ >> /etc/portage/package.unmask echo -e “\n=app-admin/syslog-ng-3.2.2″ >> /etc/portage/package.keywords emerge -avu syslog-ng It has a lot of great features, [...]

I’ve made a round of syslog-ng releases in the last couple of weeks. syslog-ng 3.0.10 [changelog] syslog-ng 3.1.4 [changelog] syslog-ng 3.2.2 [changelog] From these 3.0.10 and 3.1.4 are quite similar, as they carry the almost the same set of bugfixes, which you can find in the respective changelogs. 3.2.2 is however different, it is a [...]

It’s been a while since I wrote my last blogpost here. So sorry about it, it’s been quite hectic here… anyway I brought you something intresting. During my daily work I do a lot of log classification on logs provided by the customers. These logs are mostly either from our log server appliance or from [...]

Update: The driver has a homepage of its own at http://asylum.madhouse-project.org/projects/syslog-ng/mongodb/ Though I had no chance to look at it yet, Algernon has posted a MongoDB destination driver for syslog-ng. I can’t wait to have a closer look at it, hopefully I get a chance in the coming days, but until then be sure to [...]