| Title | Description | Subscribers only |
| GFI EventsManager 7.0 - A look at the new event log monitoring tool from GFI |
In October 2006 GFI released a new event log monitoring tool - GFI EventsManager 7.0 to replace the existing LANGuard SELM. While LANGuard was mostly dealing with security events the new one is bringing a new approach in attempting to monitor all the logs relevant to a Windows-based computer, whilst also supporting Syslog and W3C log formats |
|
| How should you view your events? |
There are many ways and tools for viewing the Windows event logs. This articles provides information on how to choose the right tool for the right task. |
|
| Expand your LANGuard SELM features - Part 2 |
This article provides an example of building a web-based interface and email notification for GFI LANGuard SELM. |
|
| Expand your LANGuard SELM features - Part 1 |
This article provides an example of building a web-based interface for GFI LANGuard SELM. |
|
| Best Practices for Security Incident Response |
A paper outlining best practices for responding to security incidents. Recommended reading for anyone who will be handling security incidents. |
|
| Why do you need to monitor your Security event log? |
Recommendations in implementing a security event log monitoring. |
|
| What are decimal, binary and hex values? |
If you work with computers, in many occasions you have heard about binary, decimal and hex numbers. This article provides a description of these numbering systems in layman terms as well as how to convert them using the "Calculator" application that ships with Windows. |
* |
| Auditing policies - their meaning and recommended settings |
Most probably you have used Auditing policies set via the group policies. Do you know what do they mean and how to configure them? |
* |
| Learn how to manage your IP addresses |
TCP/IP protocol is now de facto standard for almost any organization. Network administrators need to manage the allocation of various IP subnets used within their organization. This document provides a summary of our methodology in dealing with this issue as well as an Excel spreadsheet template that we recommend to our customers. |
* |
| Kerberos ticket options |
A description of the ticket options field that appear in certain Windows security event logs |
* |
| Windows Logon Processes |
A list of logon processes that appear in Windows security event logs |
* |
| Windows Authentication Packages |
A description of various Windows authentication packages that are listed in security event logs |
* |
| Windows Logon Types |
Many Windows security events contain a field indicating the "logon type". This article explains what those numbers mean. |
* |
| Troubleshooting template |
A template that can be used by network support people in their troubleshooting process and interaction with their customers |
|
| Ethernet terms and real-life analogies |
Ethernet terms like Half-duplex or questions like "Is 100 Mbs ten times faster than 10 Mbs?" are given oversimplified descriptions or answers as their intention is to give somebody
an "idea" on what these terms mean by using comparisons with "non-technical"
situations. |
* |
| What is the event source? |
Information about event sources and how to obtain more information about them. |
|
| Error types |
A short description of the most common types of errors encountered in the IT world. |
|
| DES Encryption Standard - Theory and example |
As a firewall or VPN administrator, one may use the term "DES" or "3DES" daily. Cryptographers surely know what's behind it and Senior Security Consultants understand the principle. But have you ever wondered just how are the bits (1s and 0s) manipulated during the DES encryption? Just how are they moved around? Well, this article is just an attempt to provide a simple example of such encryption process. |
|
| Challenges in managing firewalls |
A review of responsibilities taken by firewall administrators |
|
| How to unlink a Windows 2000 Group Policy |
This article describes the process of unlinking vs. deleting a Windows 2000 Group Policy. |
|
| How to obtain a fix |
Information about obtaining fixes listed on various Microsoft Q articles. |
* |
| The Magic Touch |
7 Principles On Troubleshooting Like A Pro |
* |
| Net Helpmsg Command |
Obtain additional information about Windows NT/2000 network error codes |
* |
| Event ID 677 |
A discussion about the Security 677 Failure Audit Events. |
|
| NT/2000 Event Logs and Event Types |
Description of NT/2000 event logs and event types |
|
| Viewing remote Event Logs |
Why do you see "The description for Event ID (xxx) in Source (xxx) could not be found." as event description and how to fix that. |
* |
| Event Log Entry Structure |
How are the event log entries structured |
* |
| The Search For Information |
Learn to use the proper keywords when searching the Internet |
* |
