I am looking to add a server monitoring solution to my servers for the purpose of security, e.g. things like log monitoring, file integrity monitoring, etc. I don't know what is typically included in HIDS packages, but I think this is the term I am looking for.
Anyway, I looked into OSSEC and it looks nice. I also am considering commercial alternatives like trend micro deep security platform.
I am afraid that there is a lot of bogus software out there in this space, so I am asking if any of you have any specific recommendations?
My main requirements:
- High quality is #1 factor.
- Easy to get the data. Aggregating to a central server with pretty reports is better for me than cryptic logs scattered about.
- Ease of maintenance. I don't want a lot of manual config and maintenance if possible.
- Cost is not a huge factor
- All our servers run Linux and are hosted on Google Cloud Platform
Aucun commentaire:
Enregistrer un commentaire