November 12, 2003 - 12:00
GFI LANguard Security Event Log Monitor (S.E.L.M.) 5, released today, raises the bar for Windows event log management: GFI LANguard S.E.L.M. can now scan for critical Internet Information Server (IIS), Exchange Server, SQL Server and ISA Server events, in addition to important security events. GFI LANguard S.E.L.M. enables administrators to automatically monitor critical servers in real time as it immediately notifies them of problems, permitting them to take instant corrective action.
How GFI LANguard S.E.L.M. works
GFI LANguard S.E.L.M. continuously scans the event logs of all Windows NT/2000/XP/2003 machines on a network, consolidating them into a central log for fast analysis and generating detailed activity reports. When it identifies critical events - such as network users attempting to access shares or secured files, email queues becoming too big, bad hard disk blocks, etc. - GFI LANguard S.E.L.M. 5 sends the administrator real-time alerts, thereby permitting immediate action against potential attacks and problems as they occur.
GFI LANguard S.E.L.M. detects insider hacking
GFI LANguard S.E.L.M. ships with a security event analysis engine, which allows administrators to quickly catch internal hackers.
"Internal security breaches and backdoors cost US business over $1 billion annually in damages. Firewalls cannot help against this. GFI LANguard S.E.L.M. combats insider hacking by continually auditing all machines on the network and alerting administrators immediately when high security events occur," said Nick Galea, GFI CEO. "With GFI LANguard S.E.L.M. 5, administrators have a major tool in their network security arsenal and considerably more peace of mind.”
Other new features in GFI LANguard S.E.L.M. 5 include:
- Windows 2003 Server compatibility (both scanning and installation - installation of MSMQ 3)
- Event analysis intelligence for SQL Server, IIS, ISA Server and Exchange Server
- Redesigned and simplified user interface
- Ability to run a command when a particular event is triggered
- Ability to send short notifications for transmission by SMS or pager
- Configuration usability enhancements, such as groups of custom rules and filter nodes grouping in the Event Viewer
- More information in event descriptions and links to GFI’s KnowledgeBase for further details
- Addition of custom rules to reduce spamming and “noise events”
- New object access report – allows administrators to monitor access to particular critical files.
Specifications, pricing and availability
GFI LANguard S.E.L.M. requires no agents or client software, has no impact on network traffic, and can be scaled to networks of thousands of servers and workstations. It is available from distributors around the world or online at the GFI site. Pricing starts at US$350 for a 2 server/25-workstation package. Administrators can check whether they need GFI LANguard S.E.L.M. at http://www.gfi.com/lanselm/whylanselm.htm. More product information and a free starter pack are available at http://www.gfi.com/lanselm/.
GFI is a leading software developer that provides a single source for network administrators to address their network security, content security and messaging needs. With award-winning technology, an aggressive pricing strategy and a strong focus on small-to-medium sized businesses, GFI is able to satisfy the need for business continuity and productivity encountered by organizations on a global scale. GFI has offices in the US, Malta, UK, Hong Kong and Australia which support more than 200,000 installations worldwide. GFI is a channel-focused company with over 10,000 partners worldwide. GFI is a Microsoft Gold Certified Partner. More information about GFI can be found at http://www.gfi.com.