Have you ever wondered why an important file magically disappeared? My co-worker Andre has worked with a couple of folks, who didn't like that scenario. As a corporate policy, deletion to some important file locations must be logged. Andre has created a nice guide for use under Windows. He utilizes MonitorWare Agent's event log monitoring capabilities together with its advanced rule engine.
That guide is not only a good source of information if you need to implement Windows file deletion tracking. It also shows nicely what can be done with MonitorWare. It definitely helps understanding the full potential and how to make best use of it.
I suggest you have a quick look at Andre's guide to tracking file and directory deletions under Windows.
Subscribe to:
Post Comments (Atom)
simplifying rsyslog JSON generation
With RESTful APIs, like for example ElasticSearch, you need to generate JSON strings. Rsyslog will soon do this in a very easy to use way. ...
-
Did you ever use TCP to transfer syslog reliably? And do you think that makes you immune against message loss? If so, it's time to think...
-
I gave an invited talk on this topic at LinuxTag 2013 in Berlin. I was originally asked to talk about "rsyslog vs. journal", but r...
-
As most of you know, rsyslog permits to pull multiple lines from a text file and combine these into a single message. This is done with the ...
No comments:
Post a Comment