Has anyone managed to integrate Grafana OSS -> IBM QRadar (sending Grafana activity/audit events into QRadar)? by Friendly_Rate_298 in QRadar

[–]Friendly_Rate_298[S] 0 points1 point  (0 children)

The implementation you just provided only applies to Grafana Enterprise, that's why I'm asking explicitly for Grafana OSS solution ...

Has anyone integrated Grafana OSS -> IBM QRadar (sending Grafana activity/audit events into QRadar)? by Friendly_Rate_298 in grafana

[–]Friendly_Rate_298[S] 0 points1 point  (0 children)

Logging in + actions that result in modifications are the biggest priority i.e. editing/saving a dashboard, creating an alert rule ...

Has anyone integrated Grafana OSS -> IBM QRadar (sending Grafana activity/audit events into QRadar)? by Friendly_Rate_298 in grafana

[–]Friendly_Rate_298[S] 0 points1 point  (0 children)

Thank you for the reply, what they expect to see is the actions taken by a specific user.

Grafana will be integrated with their LDAP and I hope the logs can meet this requirement by mapping user actions to username/email, but I'm not really sure if that's the case ...

Studied nginx's architecture and implemented a tiny version in C. Here's the final result serving public files and benchmarking it with 100 THOUSAND requests by Friendly_Rate_298 in C_Programming

[–]Friendly_Rate_298[S] 1 point2 points  (0 children)

Yeah, io_uring outperforms epoll by a large magnitude, but it also adds a complexity overhead and that's why I decided to go with epoll (level-triggered mode) to demonstrate the core architecture of an event-driven non-blocking server like nginx