Ask HN: How do you continuously monitor web logs for hack attempts?

- May 08, 2018

what is the generally accepted best practice to be monitoring web logs for anomalous accesses ?

do you guys just throw cloudflare in front and forget about it ? Or do you have engineers who work like data scientists - eyeball the logs ?

I have heard suggestions of using a firewall - but I'm genuinely curious on how do security focus companies discover things like "oh, we got attacked by Bitcoin miners from North Korea". Are there sophisticated tools that do this for you.. or is there a generally accepted practice that has evolved for even regular engineers to do this ?

P.S. I'm personally more interested in an API-focused answer, but I guess the same thing applies for websites.

from Hacker News: Front Page https://ift.tt/2jCI6n9
via

Search This Blog

Hacked News

Ask HN: How do you continuously monitor web logs for hack attempts?

Comments

Post a Comment

Popular posts from this blog

The utilitarian pleasures of playing board games by yourself

Camouflaging autistic traits linked to internalizing symptoms anxiety depression

How We Found Great Talents for Our Remote Company Without Spending a Fortune