All’s Fair in Logs and War: The importance of application event logging

A presentation at DevSecOpsDays Austin 2019 in December 2019 in Austin, TX, USA by Laura Santamaria

https://cheatsheetseries.owasp.org/cheatsheets/Logging_Cheat_Sheet.html ALL’S FAIR IN LOGS AND WAR @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar The Importance of App Event Logging

APP EVENT LOGGING IS NECESSARY. @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

OR IS IT? @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

BAD ACTORS WON’T STICK TO YOUR EXPECTATIONS… @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

… AND NEITHER WILL YOUR DEVELOPERS. @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

GO BEYOND SYSTEM LOGS @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

UNDERSTAND HOW APPS FAIL. @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

FIND YOUR BACK DOORS BEFORE THEY DO. Photo by Matthew Henry on Unsplash @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

HOW? @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

SET UP PROCESS ALERTS Photo by Hugo Jehanne on Unsplash @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

DEFINE NO KNOWN USERS @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

SEPARATE CONCERNS @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

FORCE ARCHIVES Photo by Ula Kuźma on Unsplash @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

MASK OR SANITIZE PII @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

USE STANDARD LOGGING LIBRARIES @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

USE MORE LOG LEVELS @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

OH, AND BY THE WAY… @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

…ACTUALLY CHECK YOUR LOGS @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

SO PLEASE @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar

MAKE LOGS NOT WAR @nimbinatus | #DevSecOpsDaysAustin @nimbinatus | #LogsAndWar (Thanks)

Laura Santamaria
@nimbinatus

1 / 20

Ignite on application event logging and why it’s important

Video

Buzz and feedback

Here’s what was said about this presentation on social media.

"All's Fair in Logs and War" from @nimbinatus is going to be a great talk at #devsecopsdays #austin

Tickets still available > https://t.co/RwSzGmt4JM

PS: Our best coupon code is "DevOpsDays” and is good for a $20 discount pic.twitter.com/x9s1RLYBQF
— James Wickett (@wickett) November 19, 2019
It's @nimbinatus igniting the audience about logging because #LoggingStillMatters. #devsecopsdaysaustin @LogDNA
— Boyd E Hemphill (@behemphi) December 16, 2019
Presenting the #devsecopsdaysaustin Ignite! speakers! @JGamblin @wendynather @reed_on_the_run @mandywhaley
Mark Peters
@botchgalupe@djschleen @behemphi @nimbinatus @Netcromancer
Great work all! pic.twitter.com/Zgz933kSYz
— Ernest Mueller (@ernestmueller) December 16, 2019
Haha. Logging is awesome!! The lovely @nimbinatus talking about app logging #devsecopsdaysaustin pic.twitter.com/DyMqTW43G6
— Karthik Gaekwad (@iteration1) December 16, 2019
@mandywhaley @wendynather @TheSweetKat @nimbinatus alot of great lady speakers at #devsecopsdaysaustin ... love the diversity of thought and confidence to ignite!
— devsecops (@devsecops) December 16, 2019
Legit- use app event logs pic.twitter.com/hDyI55DBlK
— Karthik Gaekwad (@iteration1) December 16, 2019
Don’t log your passwords or sensitive info. Great advice @nimbinatus #devsecopsdaysaustin pic.twitter.com/IE3wLBbvpH
— Karthik Gaekwad (@iteration1) December 16, 2019
Pet peeve! Use the levels!! @nimbinatus #devsecopsdaysaustin pic.twitter.com/w7bmfropfY
— Karthik Gaekwad (@iteration1) December 16, 2019
Probably most important thing... way to go @nimbinatus #devsecopsdaysaustin pic.twitter.com/ZD36HV6ax4
— Karthik Gaekwad (@iteration1) December 16, 2019
Loved this talk!
— DJ Schleen, ⬡ Dev{x}Ops Advocate (@djschleen) December 16, 2019
Since she can't live tweet her own talk! This is @nimbinatus rocking her ignite talk! #devsecopsdaysaustin pic.twitter.com/o77Zxfypul
— Ell @ DevopsDays Austin (@Ell_o_Punk) December 16, 2019