[syslog-ng] Insider 2016-05: BMW; GSoC; Hadoop; grouping-by; SIEM; Java; Rust;
Czanik, Péter
peter.czanik at balabit.com
Thu May 5 13:56:34 CEST 2016
Dear syslog-ng users,
This is the 49th issue of the syslog-ng Insider, a monthly newsletter
that brings you syslog-ng-related news.
NEWS
syslog-ng in the BMW i3
-----------------------
The BMW i3 electric car uses many open source software under the hood.
BMW respects the GPL and made the source code of software used
available upon request. You can find syslog-ng among them:
https://github.com/edent/BMW-OpenSource
Google Summer of Code (GSoC)
----------------------------
The syslog-ng project will participate in GSoC this year again, this
time with five students. We are looking for Feature Owners who could
represent syslog-ng users in the process. Topics range from websockets
through CLI to Java-based Kafka source. Read more about the topics and
learn how to contact the team at
https://lists.balabit.hu/pipermail/syslog-ng/2016-April/022862.html
syslog-ng is Hortonworks Data Platform certified
------------------------------------------------
Both syslog-ng OSE and PE provide a Hadoop destination and are now
Hortonworks Data Platform certified. You can read more about why use
syslog-ng in a Hadoop environment at
https://czanik.blogs.balabit.com/2016/02/filling-your-data-lake-with-log-messages-the-syslog-ng-hadoop-hdfs-destination/
or on the Hortonworks website at
http://hortonworks.com/partner/balabit/
The grouping-by() parser
------------------------
Until recently, you could only correlate and aggregate information
from multiple messages with the PatternDB parser. The new
grouping-by() parser in the upcoming syslog-ng version 3.8 can
correlate and aggregate information independently from PatternDB,
using data from any of the available parsers (CSV, key=value,
PatternDB, JSON):
https://czanik.blogs.balabit.com/2016/04/the-grouping_by-parser-in-syslog-ng-3-8/
Optimize your SIEM
------------------
Join us on Wednesday, May 18, 2016, at 2:00 PM EST to hear about the
benefits of front-ending your SIEM with syslog-ng. Benefits include:
increased performance, higher quality data, and cost-effective
scalability. Register for the live webinar at
https://pages2.balabit.com/optimize-siem/
Troubleshooting Java support
----------------------------
Java based destination drivers were introduced to syslog-ng last year.
The syslog-ng application uses libjvm.so to embed a Java Virtual
Machine inside syslog-ng. Learn which Java to use and how to make
sure, that it is found by syslog-ng:
https://czanik.blogs.balabit.com/2016/03/troubleshooting-java-support-in-syslog-ng/
Cybersecurity Excellence award for SSB
--------------------------------------
Balabit has been named the winner of the 2016 Cybersecurity Excellence
Award for Forensics for syslog-ng Store Box (SSB). Based on syslog-ng
– one of the most widely adopted log management software packages –
SSB is a highly reliable and high-performance log management appliance
which collects, classifies, organizes, and securely stores log
messages for any enterprise who operates a log management
infrastructure.
http://www.marketwired.com/press-release/balabits-syslog-ng-store-box-earns-2016-cybersecurity-excellence-award-for-forensics-2121174.htm
Packaging Rust parsers
----------------------
Up until now, if you wanted to try the new Rust-based parsing in
syslog-ng, you also had to build syslog-ng yourself from source code.
Not anymore, if you use one of the RPM-based Linux distributions:
https://czanik.blogs.balabit.com/2016/04/syslog-ng-3-8-preview-parsers-in-rust/
Your feedback and news tips about the next issue is welcome at
documentation at balabit.com . To read this newsletter on-line, visit:
http://insider.blogs.balabit.com/
Peter Czanik (CzP) <peter.czanik at balabit.com>
Balabit / syslog-ng upstream
http://czanik.blogs.balabit.com/
https://twitter.com/PCzanik
More information about the syslog-ng
mailing list