I've often thought that IT Monitoring was closely related to computer security, this security blog makes a compelling case that IT monitoring provides the "availability" component of a fully secure implementation:
http://devilsadvocatesecurity.blogspot.com/2008/02/nagios-opensource-availability-tool.html
I like his idea of the CIA Triad: Confidentiality, Integrity and Availability - with Nagios providing the Availability component.
Richard Bejtlich, who I know from my days at USENIX (he often teaches at their conferences), has a very interesting blog entry (well, at least to me) entitled "What the Feds Should Do" where he discusses how the Federal Government should implement digital security. Of particular interest is point ...
The Network Security Toolkit people include Groundwork Fruity in their toolkit. Funny: we don't think of monitoring as a security function, at least in the traditional sense, and have never considered positioning our open source monitoring products that way. Should we?
http://www.networksecuritytoolkit.org/nst/index.html
From their site:
"The main intent of developing this ...
| No Comments »
