Mark Drummond

Total activity 66
Last activity March 08, 2023 15:22
Member since February 21, 2018 14:30

Following 0 users
Followed by 0 users
Votes 11
Subscriptions 16

Activity overview

Latest activity by Mark Drummond

Mark Drummond commented, March 08, 2023 15:22
Hi Stephen. We're just documenting session info for all our apps, idle vs. absolute timeouts, are the timeout configurable etc., as part of a policy review. I seem to recall there is a longer term ...
- View comment
- Mark Drummond
- March 08, 2023 15:22
- 0 votes
Mark Drummond commented, March 06, 2023 14:55
Thanks Stephen. Exactly what I needed to know. Cheers,Mark
- View comment
- Mark Drummond
- March 06, 2023 14:55
- 0 votes
Mark Drummond created a post, March 02, 2023 21:14
Is Max Web Session timeout an idle timeout, or fixed / absolute?
1. Community
2. Managing Sumo Logic
https://help.sumologic.com/docs/manage/security/set-max-web-session-timeout/ Is the Max Web Session timeout setting an idle timeout (terminate session after X minutes / hours / days of inactivity) ...
- Mark Drummond
- March 02, 2023 21:14
- 2 followers
- 4 comments
- 0 votes
Mark Drummond commented, September 21, 2022 14:08
That worked, thanks!
- View comment
- Mark Drummond
- September 21, 2022 14:08
- 0 votes
Mark Drummond created a post, September 20, 2022 12:01
Geo lookup on "data.ip OR ip"
1. Community
2. Using Sumo Logic
Due to a change in log format, the IP addresses I want to do a geo lookup on might be stored under "data.ip" for new logs, or just "ip" for older logs. I want to do the equivalent of: | lookup lati...
- Mark Drummond
- September 20, 2022 12:01
- 2 followers
- 2 comments
- 0 votes
Mark Drummond created a post, March 01, 2022 13:47
Log access defaults to allow all?
1. Community
2. Managing Sumo Logic
Is it my imagination or is the default log access behaviour in Sumo "allow all"? It seems to me that, in order to limit someone's access to logs, I must assign them at least one role that limits th...
- Mark Drummond
- March 01, 2022 13:47
- 2 followers
- 1 comment
- 0 votes
Mark Drummond created a post, November 12, 2021 16:45
Searching from a list of keywords
1. Community
2. Using Sumo Logic
Example: "I need all log entries related to users 'jane', 'john', 'alice', and 'bob'." Given a list of user identifiers, search my logs for log entries that match any of the user identifiers in the...
- Mark Drummond
- November 12, 2021 16:45
- 2 followers
- 1 comment
- 0 votes
Mark Drummond created a post, January 07, 2020 19:36
Understanding search filters
1. Community
2. Using Sumo Logic
ref: https://help.sumologic.com/Manage/Users-and-Roles/Manage-Roles/Construct-a-Search-Filter-for-a-Role Just looking for some confirmation of my understanding of filters on roles: Scenario: Imagin...
- Mark Drummond
- January 07, 2020 19:36
- 1 follower
- 0 comments
- 0 votes
Mark Drummond commented, July 15, 2019 12:46
That put me on the right path. Here is what I ended up with (apologies for the link ... cut and paste is not working for me and I'm not going to type it out here): https://pastebin.com/DKkJQZAv I w...
- View comment
- Mark Drummond
- July 15, 2019 12:46
- 0 votes
Mark Drummond commented, July 12, 2019 16:29
Hi Mario. I am using the Cloudflare app, but the WAF Rules Triggered query is just pulling the WAFRuleID field, which is not what I am looking for. The most common WAFRuleID is "981176", which is a...
- View comment
- Mark Drummond
- July 12, 2019 16:29
- 0 votes