Since I wrote my original log mistakes paper a few years ago, the domain of log analysis changed a lot. Many factors affected it; among those are new regulatory compliance requirements, wider adoption of "best practice" and governance frameworks such as ISO, COBIT and ITIL as well as new technologies with their log files. New standards, such as NIST 800-92 Guide to Security Log Management, have been created. Thus, this article contains newly committed mistakes as well as new perspective on the old ones.
展开▼