Learn how to collect application data. Jungwoo uses Apache webserver as an example to demonstrate what type of network security-relevant data can be retrieved from a network application.
- [Instructor] There are numerous software applications out there, each of which has a potential to generate network security relevant information. Let's take a lot at the Apache web server so I can show you how an application saves data relevant to network security. Apache is a popular solution used to host websites, and runs on both Linux, Unix, and Windows operating systems. On Ubuntu, Apache 2 saves its log entries in the var/log/apache2 directory.
Let's go to the directory. So let me first open up the terminal window, type cd var/log/apache2. To see the content of the directory, type ls. As you can see, Apache 2 uses two log files, access.log is one and error.log is the other. Let's see what access.log file contains. Type more access.log, and you can see the content of access.log file.
As you can see, access.log shows what client reads, which webpage at what time, as well as the success or failure of the page access request, and the type of web browser used. Now let's take a look at error.log file. Type more error.log. Error.log records problems an Apache web server encounters. For example, it records attempts to read files that do not exist on the web server.
Apache 2 provides a number of formatting options for its log files, which helps with data collection and analysis for network security purposes. Apache is only one example out of countless network applications available today. Each of these applications can provide its own unique contribution to completing a holistic view of your network security, as shown in the example of Apache web server.
- Network security concepts
- The basic functions of a firewall
- Intrusion detection and prevention systems
- Using network data to improve security
- Using log servers to collect data
- Collecting application data
- Collecting OS data
- Network forensics
- Network security visualization