Graylog 7.1 just shipped
Auto-investigations from asset risk thresholds. One-click Slice-By triage. Anomaly detection plugged directly into your alert workflow.
May the 4th be with your alert queue.
See what's new: https://graylog.org/post/may-the-logs-be-with-you-graylog-7-1-is-here/
Collecting and analyzing log data becomes challenging in a multi-tiered architecture or a dynamic microservice environment. The LPI DevOps Tools Engineer 2.0 exam covers log management and analysis in objective 704.3.
Learn more from Fabian Thorns and Uirá Ribeiro: https://lpi.org/5swa
#devops #logmanagement #observability #opensource #elasticsearch #graylog #promtail #loki #applicationlogging #systemlogging #kubernetes #syslog #linux #LPICertification
#homeLab fun...
Randomly checked my #graylog dashboard for self hosted webserver. Oh someone was trying various WordPress vulns again... Let's see the inbound IPs...
Oh,... Oh no. The call is coming from inside the network! In the 192.168.1.0/24 group...
K, check that host... Oh yeah 🤦♂️ that's the node that hosts the externally visible reverse proxy service.
Derp,
Well, at least reconfiguration of the proxy and webserver to carry the real client IP was fairly straightforward. Just something I missed during my initial, and subsequent, configuration.
Though somewhat risky, connecting computers to the wild network is always a learning experience. My autodidactic ass learns so much from seeing that something can be done then trying naively to do it myself. Bumping up against each and every hurdle informs the why then the how of the best in class solutions. I may not always succeed but I get a better understanding of the tools and technology landscape we exist in.
@mensrea @elena honestly, I self-host #splunk for my own needs.
I’m using it at home (free 500MB/day license) and at work (old enterprise perpetual license) for more than 12 years now.
It’s FREAKING good. I can’t find a decent contender in the #FOSS world for the enterprise version. For the free tier (striped down version without user profile, alerting, etc.), things like #graylog or #wazuh can be great alternatives.
Still, deployment of Splunk is super easy.
Grateful and humbled. Another RSA in the books, great conversations, and new hardware to show for it.
Thanks to all who stopped by and chatted with us.
Dank #elasticsearch und #graylog geht uns der Plattenplatz aus. Wir haben pro Tag etwa 60GB pro #rechenzentrum
Macht macht man also? Neue Platten kaufen. Wären in unserem Fall: 33 x 3TB. Kosten aktuell: 100.000€ .. und vermutlich wären das die letzten Platten, die wir 2026 bekommen .. zu einem Preis, den man noch "normal" nennen darf. Angebot endet morgen um 23:59 ...
Ich bin gespannt, ob die Firma das genehmigt.
Graylog
Graylog
Linux Professional Institute
RyeNCode 🇨🇦
patpro
Denny
OffSequence
Anton