Since the Open Event Log Project wiki has not been actively updated over the past few months, with the exception of porn URL’s (thank you Ron Gula for bringing that to my attention), I’ve decided to take it offline. I simply don’t have the time to maintain it.

Maybe I’ll revisit this endeavor in the future, when I have more free time, as it could easily be a full time job to search out logs and explain what they do. Sounds like a business model to me 🙂

Error Message

%OC12ATM-3-DICK_TRACY : [chars]

and

%C10KATM-3-DICK_TRACY : [chars]

Explanation A “no valid excuse” event has occurred.

Recommended Action Copy the error message exactly as it appears on the console or in the system log, contact your Cisco technical support representative, and provide the representative with the gathered information.

You can’t make this stuff up! I actually got this from public Cisco documentation. Has anyone ever received a response from Cisco on the resolution/fix for the problem causing this error? I’d love to hear it!

As many of you know I am happily employed by Q1 Labs Inc., managing a team of software developers who are responsible for integrating 3rd party event and vulnerability data into Q1 Labs QRadar.

Due to recent growth, I am now looking for developers to join our Integration Services team. As a member of the Q1 Labs Integration Services Team, you would be responsible for the integration of third-party events and vulnerability data into Q1 Labs’ flagship network security management solution, QRadar. As a qualified candidate, you must be able to:

• Research the logging/messaging capability of log sources and determine the best method for integrating them
• Collect, analyze, and classify sample log messages and create methods for parsing them
• Work with internal groups to design, implement, test, and document device support, including processing, alerting, and reporting capabilities
• Work well independently and within a team; especially cross-functional teams in a fast-paced environment

In addition to the above skills, you must also possess:

• Development experience in Java and/or C++
• Solid understanding of networking protocols and principles
• Experience with UNIX/Linux operating systems including system administration
• Scripting experience using a dynamic language such as Perl and/or Python (additional scripting language knowledge a plus)
• Good unit and integration testing experience
• Exceptional problem-solving expertise and attention to detail
• Strong oral and written communication skills
• Experience with development and release practices for a commercial product
• Self-driven quick learner with attention to detail and quality

Additional skills that will help you succeed in this role are:

• Development experience with relational databases
• Knowledge of security best practices and methodologies
• Experience in security log analysis, application log analysis, and general log management best practices
• Knowledge of log transport protocols

Since this position is located in Fredericton, New Brunswick, Canada relocation assistance and visa sponsorship is available. So if you are interested, or know of anyone who would be, please email a resume to andrewsmhay@gmail.com with a description of why you feel you would excel at this position.