Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Elk Stacks
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
Bigun
Advocate
Advocate


Joined: 21 Sep 2003
Posts: 2154

PostPosted: Fri Dec 22, 2017 6:22 pm    Post subject: Elk Stacks Reply with quote

I've began going to security conferences, and I was introduced to ELK stacks. After some research, I'm starting to understand what an ELK stack is.

Now, what I'm having issue figuring out is what is the ELK stack for? How is data in the ELK stack populated? How does one use an ELK stack on a repeatable task basis? What benefit does having/using an ELK stack give my company/department?

Sorry for asking for clarification here, but googling ELK stack brings back a near perfect example of a word salad mixed with advertisements.
_________________
"It's ok, they might have guns but we have flowers." - Perpetual Victim


Last edited by Bigun on Fri Dec 22, 2017 6:27 pm; edited 1 time in total
Back to top
View user's profile Send private message
Jaglover
Watchman
Watchman


Joined: 29 May 2005
Posts: 7093
Location: Saint Amant, Acadiana

PostPosted: Fri Dec 22, 2017 6:26 pm    Post subject: Reply with quote

DuckDuck...
_________________
Please learn how to denote units correctly!
Back to top
View user's profile Send private message
Hu
Moderator
Moderator


Joined: 06 Mar 2007
Posts: 13855

PostPosted: Fri Dec 22, 2017 11:12 pm    Post subject: Reply with quote

For those of us who have not gone to these conferences, perhaps you could define the key terms in your opening post. I somehow doubt this involves creating towers of wildlife, but that's the only meaning of "ELK stack" that occurs to me.
Back to top
View user's profile Send private message
saboya
Guru
Guru


Joined: 28 Nov 2006
Posts: 442
Location: Brazil

PostPosted: Sat Dec 23, 2017 11:57 am    Post subject: Reply with quote

This is like asking "What benefit does having a SQL server give my company/department?". If you can't answer that question, you probably don't need it.

For those who don't know, ELK stands for ElasticSearch + Logstash + Kibana.
Back to top
View user's profile Send private message
Hu
Moderator
Moderator


Joined: 06 Mar 2007
Posts: 13855

PostPosted: Sat Dec 23, 2017 5:07 pm    Post subject: Reply with quote

saboya: thank you. After posting, I ran the search Jaglover suggested, and it suggested that answer. I decided not to amend my post both because a tower of elk was amusing to me and because I wanted the original poster to confirm that the hits from Jaglover's search were relevant to the question, rather than a coincidental match. I've had too many occasions where short unoriginal names can mean very different things to different groups. Wine (the beverage) versus Wine (the Windows compatibility layer) comes to mind as the most prominent example of coincidental unhelpful search engine results, although that pairing is usually disambiguated by surrounding context.
Back to top
View user's profile Send private message
Bigun
Advocate
Advocate


Joined: 21 Sep 2003
Posts: 2154

PostPosted: Wed Dec 27, 2017 8:37 pm    Post subject: Reply with quote

saboya wrote:
This is like asking "What benefit does having a SQL server give my company/department?". If you can't answer that question, you probably don't need it.

For those who don't know, ELK stands for ElasticSearch + Logstash + Kibana.


Maybe I wasn't clear enough, the response was a little on the douchey side, and it may be my fault.

I was under the understanding that ELK stacks are commonly used for log audits. Just wondering how that gets populated with logs, and what daily maintenance would look like.

Getting search results that are clouded by software companies trying to sell you add-ons vs learning the damn technology pisses me off.
_________________
"It's ok, they might have guns but we have flowers." - Perpetual Victim
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum