Senior players object to cut in fee if teams fail to end in Top 3

first_imgTop Indian cricketers, who have been part of different teams of Indian Premier League (IPL), have objected to a clause in their contract with the respective franchises that denies them 20 per cent of their fees in case their team fails to finish among the top three.The clause has been introduced for season IV. As per the rule, if the teams fail to qualify for the Champions League (top three IPL teams make it to the international league), the players would get only 80 per cent of their fees.The players of the 10 IPL teams read the newly-introduced fine print in their contracts only after the January 8-9 auction. They collectively approached Board of Control for Cricket in India (BCCI) president Shashank Manohar with their complaint last week.At the meeting, the players said that the clause was unfair, and a breach of their trust. Manohar assured them that the matter would be discussed at the IPL governing council meeting on February 4.However, the team owners insisted there was nothing unfair in the clause as the players’ payment was meant to be for both the IPL and the Champions League.The clause was part of the contract of only those players whose names figured during the auction. Uncapped players would get full payment regardless of how their teams do.last_img read more

Amber Guiboche missing in Winnipeg

first_imgAPTN National NewsAs political rhetoric continues with missing and murdered women cases and how the $10 million should be used, another family in Winnipeg fears it is facing a dark reality.APTN National News reporter Tiar Wilson has this story.last_img

Inter Vs PSV is the most important match since my leadership

first_imgAhead of Champions League match between Inter and PSV, Inter Milan coach Luciano Spalletti responded to questions from journalists at the Suning Training Centre.Spalletti said during a Press conference as quoted in club’s website, that the match with PSV is the most important ever since he joined the club as a coach.“This match is the most important one since I’ve been here and it represents the next step that follows on from Lazio vs. Inter on 20 May. Since I’ve been here, we’ve got the points and put in the performances that we needed.”“ Now, we’re here to play for a spot in the last 16 on the final day of the group stage. We’re all aware of the importance of this game, the players are working really well.”Romelu Lukaku, Serie A, Inter MilanCapello calls Lukaku “a modern striker” Manuel R. Medina – September 14, 2019 The former Italian manager believes Romelu Lukaku is perfectly suited for Antonio Conte’s Internazionale Milan in the Serie A.“We know that qualification won’t just depend on our result but I’d imagine that those at Barcelona would be offended if we continue to doubt their professionalism. They’re a serious club with real professionals, we can’t look at their game.”“ We need to only focus on the PSV game and it’s important to remember that they were in a higher pot of the draw than us.”“Inter certainly hasn’t lost a sense of conviction even if we showed some small lapses in concentration in the last game over the course of the 90 minutes.”“ We’ve played really strong teams like Tottenham Hotspur and Juventus of late and we’ve played on an equal footing. Today, the difference between us and teams of that standard is consistency over the course of an entire season.”last_img read more

Northern California wildfires leave 17 dead and hundreds looking for loved ones

first_img By JEFF CHIU and ELLEN KNICKMEYERAssociated Press  SANTA ROSA, Calif. (AP) – Hundreds more firefighters and law enforcement officials headed Tuesday to Northern California to battle wildfires that have killed at least 17 people, including a 100-year-old man and his 98-year-old wife who were unable to escape their burning home.  Authorities hoped cooler weather and lighter winds would help crews get a handle on the fires, which are among the deadliest in California history and are still burning completely uncontained.  “The weather has been working in our favor, but it doesn’t mean it will stay that way,” said Brad Alexander, a spokesman of the governor’s Office of Emergency Services.  The extra firefighters came from throughout California and Nevada. The extra law enforcement officers will help with evacuations and guard against looting, Alexander said.  At least 100 people have been injured and 2,000 homes and businesses destroyed, according to authorities, who warned that all those figures were expected to climb in the coming days as more information is reported.  Among the dead were Charles and Sara Rippey, who were married for 75 years and lived at the Silverado Resort in Napa.  “The only thing worse would have been if one survived without the other,” their daughter, Ruby Gibney told Oakland television station KTVU.  More than 400 miles away, flames imperiled parts of Southern California, too. Thousands of people were displaced by a wildfire that destroyed or damaged 24 structures, including homes. Hot, dry Santa Ana winds swept fire along brushy outskirts of Orange County suburbs and equestrian properties southeast of Los Angeles. More than a dozen schools were closed.  The blaze, which disrupted major commuter routes, spread over nearly a dozen square miles in less than 24 hours as a squadron of helicopters and airplanes bombarded it with water and retardant, and an army of firefighters grew to 1,100 by Tuesday morning.  At the other end of the state, residents who gathered at emergency shelters and grocery stores said they were shocked by the speed and ferocity of the flames. They recalled all the possessions that were lost.  “All that good stuff, I’m never going to see it again,” said Jeff Okrepkie, who fled his neighborhood in Santa Rosa knowing it was probably the last time he would see his home of the past five years standing.  His worst fears were confirmed Monday, when a friend sent him a photo of what was left: a smoldering heap of burnt metal and debris.  Some of the largest of the 14 blazes burning over a 200-mile region were in Napa and Sonoma counties, home to dozens of wineries that attract tourists from around the world. They sent smoke as far south as San Francisco, about 60 miles (96 kilometers) away.  Sonoma County said it has received about 200 missing-person reports as family and friends sought to locate loved ones. It’s possible that many or most of the missing are safe but simply cannot be reached because of the widespread loss of cellphone service and other communications.  Much of the damage was in Santa Rosa, a far larger and more developed city than usually finds itself at the mercy of a wildfire. The city is home to 175,000 residents, including both the wine-country wealthy and the working class.  The flames were unforgiving to both groups. Hundreds of homes of all sizes were leveled by flames so hot they melted the glass off of cars and turned aluminum wheels into liquid.  Former San Francisco Giants pitcher Noah Lowry, who now runs an outdoor sporting goods store in Santa Rosa, was forced to flee in minutes along with his wife, two daughters and a son just over 2 weeks old.  “I can’t shake hearing people scream in terror as the flames barreled down on us,” Lowry said.  His family and another evacuating with them tried to take U.S. 101 to evacuate but found it blocked by flames, and had to take country roads to get to the family friends who took them in.  A 90-mile (145-kilometer) stretch of the highway is framed by the flames and a major concern overnight, said Brad Alexander, a spokesman for the California Office of Emergency Services.  Highway 12, which winds through the heart of wine country, was also rendered unusable by the flames.  “Sonoma and Napa counties have been hit very hard,” Alexander said.  The flames forced authorities to focus primarily on getting people out safely, even if it meant abandoning structures to the fire.  Firefighters rushed to a state home for the severely disabled when flames reached one side of the center’s sprawling campus in the historic Sonoma County town of Glen Ellen.  Crews got the more than 200 people from the threatened buildings, one firefighter said, as flames closed within a few dozen feet.  Fires from ruptured gas lines dotted the smoky landscapes of blackened Santa Rosa hillsides. Fire trucks raced by smoldering roadside landscaping in search of higher priorities.  The flames were fickle in some corners of the city. One hillside home remained unscathed while a dozen surrounding it were destroyed.  Kim Hoe, a 33-year-old tech worker from Penang, Malaysia, was staying at the Hilton Sonoma Wine Country, which was gutted by flames. He said the power went out around 1 a.m., and he and his colleagues started packing up when someone knocked on the door and told them to run.  “We just had to run and run. It was full of smoke. We could barely breathe,” Hoe said.  Late Monday, flames began coming over a ridge in an area bordering Oakmont and Trione-Annadel State Park, Santa Rosa Police Sgt. Summer Black told the Santa Rosa Press Democrat ( ). Most of the Oakmont area was evacuated earlier in the day.  October has generally been the most destructive time of year for California wildfires. What was unusual Sunday, however, was to have so many fires take off at the same time.  Other than the windy conditions that helped drive them all, there was no known connection between the fires, and no cause has been released for any of them.  ___  Knickmeyer reported from Sonoma, California. Associated Press writers Paul Elias, Jocelyn Gecker, Sudhin Thanawala, Juliet Williams, Janie McCauley and Olga R. Rodriguez in San Francisco, John Antczak and Andrew Dalton in Los Angeles, Alina Hartounian in Phoenix and Martha Bellisle in Seattle also contributed to this report.(Copyright 2017 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.) KUSI Newsroom Posted: October 9, 2017 KUSI Newsroom, Northern California wildfires leave 17 dead and hundreds looking for loved ones Categories: Local San Diego News FacebookTwitter October 9, 2017last_img read more

Navy veteran homeowner Marine tenants to take HOA to court

first_img Categories: Local San Diego News Tags: Military FacebookTwitter September 25, 2018 Updated: 10:40 PM Navy veteran homeowner, Marine tenants, to take HOA to court Ashlie Rodriguez center_img Posted: September 25, 2018 Ashlie Rodriguez, 00:00 00:00 spaceplay / pause qunload | stop ffullscreenshift + ←→slower / faster ↑↓volume mmute ←→seek  . seek to previous 12… 6 seek to 10%, 20% … 60% XColor SettingsAaAaAaAaTextBackgroundOpacity SettingsTextOpaqueSemi-TransparentBackgroundSemi-TransparentOpaqueTransparentFont SettingsSize||TypeSerif MonospaceSerifSans Serif MonospaceSans SerifCasualCursiveSmallCapsResetSave SettingsOCEANSIDE (KUSI) – An Oceanside Navy veteran takes his homeowners’ association to court after it said he was violating rules 10 years after he bought two homes in the neighborhood.KUSI’s Ashlie Rodriguez was live from the Arrowwood community where those two homes are located. last_img read more

Study shows brewers yeast hybridizes in wasp gut

first_img(—A team of researchers from Italy, Uruguay and Spain has found via lab study that common brewer’s yeast not only mate in the guts of wasps, but interbreed with other yeast species, producing hybrids. In their paper published in Proceedings of the National Academy of Sciences, the group describes their study and results and why they believe their findings could have implications for both environmentalists and manufactures of yeast based products. This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only. Journal information: Proceedings of the National Academy of Sciences More information: “Social wasps are a Saccharomyces mating nest,” PNAS, These findings, the team notes, could have serious implications for not just wine growers or bread makers, but for environmentalists as well. Here they suggest is evidence of a fundamental part of the ecological cycle that was not known to exist. They wonder if other insects might be playing a similar role for other yeast or fungus types, such as bees or ants. They plan to continue the work to find out. Crabro wasp looking outside from a wasp’s nest in a tree. The image suggests how crabro wasps could transport yeasts from different environments, harboring yeast species isolated from tree bark, such as Saccharomyces paradoxus and some Saccharomyces cerevisiae, and strains from species mainly found in wine, grape berries, and wineries, such as Saccharomyces cerevisiae. Credit: Carlotta De Filippo Researchers find wasps are the key to yeast’s ability to survive through wintercenter_img Explore further Brewer’s yeast, a type of fungus, is used to make alcoholic beverages and bread—its use has been the focus of study for thousands of years, yet, as the researchers with this new effort note, little is known about it outside of the laboratory. To learn more, they started with the findings four years ago by another team—that brewer’s yeast lives inside the guts of wasps while the wasps hibernate. They collected five different strains of the yeast and put them on grapes which were fed to wasps and then turned down the heat, causing the wasps to hibernate. After two months the researchers found that approximately one third of the yeast population had mated with yeast of a different species. After four months that number went up to 90 percent, proving , they claim, that yeast not only mate in wasp guts, but also interbreed.Taking the experiment a step further, the researchers found that the interbred strains tended to be more hardy inside the wasp gut then those that were not—over time, the pure breeds actually died off. This, the researchers claim, proves that wasp gut reproduction is a major driver of yeast diversity in nature. And , they add, that suggests that yeast are dependent on interaction with insects for evolutionary development. © 2016 Citation: Study shows brewer’s yeast hybridizes in wasp gut (2016, January 19) retrieved 18 August 2019 from The wasp and the grape: a worker hornet (Vespa crabro) feeding on a grape in a Tuscan vineyard in October. The image shows how Vespa crabro can break and eat grape berries, moving S.cerevisiae yeasts and other microorganisms. Credit: Stefano Turillazzilast_img read more

Chowringhee fire due to short circuit in equipment

first_imgKolkata: Forensic experts have pointed out a short circuit in electrical equipment inside the fashion designing institute as the probable reason behind the fire that gutted an office in the multi-storeyed building situated on the 4th Floor of 60 A, Chowringhee Road near Exide Crossing on Friday morning. A portion of the roof of the building caved in due to the fire.”Prima facie, it appears that electrical short circuit has caused the fire. There were many electrical gadgets including computers inside the office of the institute. We have collected some samples and we will examine them for conclusive evidence,” said Wasim Raja, senior scientist of state forensic institute. Also Read – Rs 13,000 crore investment to provide 2 lakh jobs: MamataA senior forensic official present during the inspection said that it was difficult to collect samples as the debris of the collapsed roof is lying here and there in a precarious condition. Officials of the building department of the Kolkata Municipal Corporation inspected the site and labourers were roped in to clear the debris. “The process of clearing the debris is time-consuming. The labourers who are doing the work have to remain very careful as the building is very old and is prone to further damage. Our aim is to ensure that normal activities in the building resume as quickly as possible,” said local councillor Ashim Basu. Also Read – Lightning kills 8, injures 16 in stateThe state Fire and Emergency Services department on Saturday sent a notice to the owner of the building seeking a report on what measures he had put in place in terms of fire-fighting preparedness. Dipak Mukherjee, managing director of Mookherjee Estates Private Limited, a realty company, owns the building. Residents of two apartments in the building have shifted elsewhere and will return only after CESC restores the electric connection and KMC restores the water supply line that has been damaged. Meanwhile, a fire was reported from a mobile harbour crane at Haldia Dock at around 8.30 on Saturday morning. It soon spread to the 13 number berth. However, 10 fire tenders rushed to the spot and prevented the flames from spreading further.last_img read more

How to create a generic reusable section for a single page based

first_imgThere are countless variations when it comes to different sections that can be incorporated into the design of a single page website. In this tutorial, we will cover how to create a generic section that can be extended to multiple sections. This section provides the ability to display any information your website needs. Single page sections are commonly used to display the following data to the user: Contact form (will be implemented in the next chapter). About us: This can be as simple as a couple of paragraphs talking about the company/individual or more complex with images, even showing the team and their roles. Projects/work: Any work you or the company has done and would like to showcase. They are usually linked to external pages or pop up boxes containing more information about the project. Useful company info such as opening times. These are just some of the many uses for sections in a single page website. A good rule of thumb is that if it can be a page on another website it can most likely be adapted into sections on a single page website. Also, depending on the amount of information a single section has, it could potentially be split into multiple sections. This article is an excerpt taken from the book,’ Responsive Web Design by Example‘, written by Frahaan Hussain. Single page section examples Let’s go through some examples of the sections mentioned above. Example 1: Contact form As can be seen, by the contact form from Richman, the elements used are very similar to that of a contact page. A form is used with inputs for the various pieces of information required from the user along with a button for submission: Not all contact forms will have the same fields. Put what you need, it may be more or less, there is no right or wrong answer. Also at the bottom of the section is the company’s logo along with some written contact information, which is also very common. Some websites also display a map usually using the Google Maps API; these mainly have a physical presence such as a store. Website link— Example 2: About us This is an excellent example of an about us page that uses the following elements to convey the information: Images: Display the individual’s face. Creates a very personal touch to the otherwise digital website. Title: Used to display the individual’s name. This can also be an image if you want a fancier title. Simple text: Talks about who the person is and what they do. Icons: Linking to the individual’s social media accounts. Website link— Example 3: Projects/work This website shows its work off very elegantly and cleanly using images and little text: It also provides a carousel-like slider to display the work, which is extremely useful for displaying the content bigger without displaying all of it at once and it allows a lot of content for a small section to be used. Website link: Example 4: Opening times This website uses a background image similar to the introduction section created in the previous chapter and an additional image on top to display the opening times. This can also be achieved using a mixture of text and CSS styling for various facets such as the border. Website link— Implementing generic reusable single page section We will now create a generic section that can easily be modified and reused to our single page portfolio website. But we still need some sort of layout/design in mind before we implement the section, let’s go with an Our Team style section. What will the Our Team section contain? The Our Team section will be a bit simpler, but it can easily be modified to accommodate the animations and styles displayed on the previously mentioned websites. It will be similar to the following example: Website link— The preceding example consists of the following elements: Heading Intro text (Lorem Ipsum in this case) Images displaying each member of the team Team member’s name Their role Text informing the viewer a little bit about them Social links We will also create our section using a similar layout. We are now finally going to use the column system to its full potential to provide a responsive experience using breakpoints. Creating the Our Team section container First let’s implement a simple container, with the title and section introduction text, without any extra elements such as an image. We will then use this to link to our navigation bar. Add the following code to the jumbotron div: Let’s go over what the preceding code is doing: Line 9 creates a container that is fluid, allowing it to span the browser’s width fully. This can be changed to a regular container if you like. The id will be used very soon to link to the navigation bar. Line 10 creates a row in which our text elements will be stored. Line 11 creates a div that spans all the 12 columns on all screen sizes and centers the text inside of it. Line 12 creates a simple header for the Team section. Line 14 to Line 16 adds introduction text. I have put the first two sentences of “Lorem Ipsum…” inside of it, but you can put anything you like. All of this produces the following result: Anchoring the Team section to the navigation bar We will now link the navigation bar to the Team section. This will allow the user to navigate to the Team section without having to scroll up or down. At the moment, there is no need to scroll up, but when more content is added this can become a problem as a single page website can become quite long. Fortunately, we have already done the heavy lifting with the navigation bar through HTML and JavaScript, phew! First, let’s change the name of the second button in the navigation bar to Team. Update the navigation bar like so: The navigation bar will now look as follows: Fantastic, our navigation bar is looking more like what you would see on a real website. Now let’s change href to the same ID as the Team section, which was #TeamSection like so: Now when we click on any of the navigation buttons we get no JavaScript errors like we would have in the previous chapter. Also, it automatically scrolls to each section without any extra JavaScript code. Adding team pictures Now let’s use images to showcase the team members. I will use the image from the following link for our employees, but in a real website you would obviously use different images: I have modified the image so all the background is removed and the image is trimmed, so it looks as follows: Up until now, all images that we have used have been stored on other websites such as CDN’s, this is great, but the need may arise when the use of a custom image like the previous one is needed. We can either store it on a CDN, which is a very good approach, and I would recommend Cloudinary (, or we can store it locally, which we will do now. A CDN is a Content Delivery Network that has a sole purpose of delivering content such as images to other websites using the best and fastest servers available to a specific user. I would definitely recommend using one. Create a folder called Images and place the image using the following folder structure: Root CSS Images Team Thumbnails Thumbnails.png Index. php JS SNIPPETS This may seem like overkill, considering we only have one image, but as your website gets more complex you will store more images and having an intelligent folder structure/hierarchy will save an immense amount of time. Add the following code to the first row like so: The code we have added doesn’t actually provide any visual changes as it is nothing but empty div classes. But these div classes will serve as structures for each team member and their respective content such as name and social links. We created a new row to group our new div classes. Inside each div we will represent each team member. The classes have been set up to be displayed like so: Extra small screens will only show a single team member on a single row Small and medium screens will show two team members on a single row Large and extra large screens will show four team members on a single row The rows are rows in their literal sense and not the class row. Another way to look at them is as lines. The sizes/breakpoints can easily be changed using the information regarding the grid from this article What Is Bootstrap, Why Do We Use It? Now let’s add the team’s images, update the previous code like so: The preceding code produces the following result: As you can see, this is not the desired effect we were looking for. As there are no size restrictions on the image, it is displayed at its original size. Which, on some screens, will produce a result similar to the monstrosity you saw before; worry not, this can easily be fixed. Add the classes img-fluid and img-thumbnail to each one of the images like so: The classes we added are designed to provide the following styling: img-fluid: Provides a responsive image that is automatically restricted based on the number of columns and browser size. img-thumbnail: Is more of an optional class, but it is still very useful. It provides a light border around the images to make them pop. This produces the following result: As it can be seen, this is significantly better than our previous result. Depending on the browser/screen size, the positioning will slightly change based on the column breakpoints we specified. As usual, I recommend that you resize the browser to see the different layouts. These images are almost complete; they look fine on most screen sizes, but they aren’t actually centered within their respective div. This is evident in larger screen sizes, as can be seen here: It isn’t very noticeable, but the problem is there, it can be seen to the right of the last image. You probably could get away without fixing this, but when creating anything, from a website to a game, or even a table, the smallest details are what separate the good websites from the amazing websites. This is a simple idea called the aggregation of marginal gains. Fortunately for us, like many times before, Bootstrap offers functionality to resolve our little problem. Simply add the text-center class, to the row within the div of the images like so: This now produces the following result: There is one more slight problem that is only noticeable on smaller screens when the images/member containers are stacked on top of each other. The following result is produced: The problem might not jump out at first glance, but look closely at the gaps between the images that are stacked, or I should say, to the lack of a gap. This isn’t the end of the world, but again the small details make an immense difference to the look of a website. This can be easily fixed by adding padding to each team member div. First, add a class of teamMemberContainer to each team member div like so: Add the following CSS code to the index.css file to provide a more visible gap through the use of padding: This simple solution now produces the following result: If you want the gap to be bigger, simply increase the value and lower it to reduce the gap. Team member info text The previous section covered quite a lot if you’re not 100% on what we did just go back and take a second look. This section will thankfully be very simple as it will incorporate techniques and features we have already covered, to add the following information to each team member: Name Job title Member info text Plus anything else you need Update each team member container with the following code: Let’s go over the new code line by line: Line 24 adds a simple header that is intended to display the team member’s name. I have chosen an h4 tag, but you can use something bigger or smaller if you like. Line 26 adds the team member’s job title, I have used a paragraph element with the Bootstrap class text-muted, which lightens the text color. If you would like more information regarding text styling within Bootstrap, feel free to check out the following link. Line 28 adds a simple paragraph with no extra styling to display some information about the team member. Bootstrap text styling link— The code that we just added will produce the following result: As usual, resize your browser to simulate different screen sizes. I use Chrome as my main browser, but Safari has an awesome feature baked right in that allows you to see how your website will run on different browsers/devices, this link will help you use this feature— Most browsers have a plethora of plugins to aid in this process, but not only does Safari have it built in, it works really well. It all looks fantastic, but again I will nitpick at the gaps. The image is right on top of the team member name text; a small gap would really help improve the visual fidelity. Add a class of teamMemberImage to each image tag as it is demonstrated here: Now add the following code to the index.css file, which will apply a margin of 10px below the image, hence moving all the content down: Change the margin to suit your needs. This very simple code will produce the following similar yet subtly different and more visually appealing result: Team member social links We have almost completed the Team section, only the social links remain for each team member. I will be using simple images for the social buttons from the following link: I will also only be adding three social icons, but feel free to add as many or as few as you need. Add the following code to the button of each team member container: Let’s go over each new line of code: Line 30 creates a div to store all the social buttons for each team member Line 31 creates a link to Facebook (add your social link in the href) Line 32 adds an image to show the Facebook social link Line 35 creates a link to Google+ (add your social link in the href) Line 36 adds an image to show the Google+ social link Line 39 creates a link to Twitter (add your social link in the href) Line 40 adds an image to show the Twitter social link We have added a class that needs to be implemented, but let’s first run our website to see the result without any styling: It looks OK, but the social icons are a bit big, especially if we were to have more icons. Add the following CSS styling to the index.css file: This piece of code simply restricts the social icons size to 50px. Only setting the width causes the height to be automatically calculated, this ensures that any changes to the image that involves a ratio change won’t mess up the look of the icons. This now produces the following result: Feel free to change the width to suit your desires. With the social buttons implemented, we are done. If you’ve enjoyed this tutorial, check out Responsive Web Design by Example, to create a cool blog page, beautiful portfolio site, or professional business site to make them all totally responsive. Read Next: 5 things to consider when developing an eCommerce website What UX designers can teach Machine Learning Engineers? To start with: Model Interpretabilitylast_img read more

Log monitoring tools for continuous security monitoring policy Tutorial

first_imgHow many times we have heard of organization’s entire database being breached and downloaded by the hackers. The irony is, they are not even aware about anything until the hacker is selling the database details on the dark web after few months. Even though they implement decent security controls, what they lack is continuous security monitoring policy. It is one of the most common things that you might find in a startup or mid-sized organization. In this article, we will show how to choose the right log monitoring tool to implement continuous security monitoring policy. You are reading an excerpt from the book Enterprise Cloud Security and Governance, written by Zeal Vora. Log monitoring is a must in security Log monitoring is considered to be part of the de facto list of things that need to be implemented in an organization. It gives us the power of visibility of various events through a single central solution so we don’t have to end up doing less or tail on every log file of every server. In the following screenshot, we have performed a new search with the keyword not authorized to perform and the log monitoring solution has shown us such events in a nice graphical way along with the actual logs, which span across days: Thus, if we want to see how many permission denied events occurred last week on Wednesday, this will be a 2-minute job if we have a central log monitoring solution with search functionality. This makes life much easier and would allow us to detect anomalies and attacks in a much faster than traditional approach. Choosing the right log monitoring tool This is a very important decision that needs to be taken by the organization. There are both commercial offerings as well as open source offerings that are available today but the amount of efforts that need to be taken in each of them varies a lot. I have seen many commercial offerings such as Splunk and ArcSight being used in large enterprises, including national level banks. On the contrary, there are also open source offerings, such as ELK Stack, that are gaining popularity especially after Filebeat got introduced. At a personal level, I really like Splunk but it gets very expensive when you have a lot of data being generated. This is one of the reasons why many startups or mid-sized organizations use commercial offering along with open source offerings such as ELK Stack. Having said that, we need to understand that if you decide to go with ELK Stack and have a large amount of data, then ideally you would need a dedicated person to manage it. Just to mention, AWS also has a basic level of log monitoring capability available with the help of CloudWatch. Let’s get started with logging and monitoring There will always be many sources from which we need to monitor logs. Since it will be difficult to cover each and every individual source, we will talk about two primary ones, which we will be discussing sequentially: VPC flow logs AWS Config VPC flow logs VPC flow logs is a feature that allows us to capture information related to IP traffic that goes to and from the network interfaces within the VPC. VPC flow logs help in both troubleshooting related to why certain traffic is not reaching the EC2 instances and also understanding what the traffic is that is accepted and rejected. The VPC flow logs can be part of individual network interface level of an EC2 instance. This allows us to monitor how many packets are accepted or rejected in a specific EC2 instance running in the DMZ maybe. By default, the VPC flow logs are not enabled, so we will go ahead and enable the VPC flow log within our VPC: Enabling flow logs for VPC: In our environment, we have two VPCs named Development and Production. In this case, we will enable the VPC flow logs for development VPC: In order to do that, click on the Development VPC and select the Flow Logs tab. This will give you a button named Create Flow Log. Click on it and we can go ahead with the configuration procedure: Since the VPC flow logs data will be sent to CloudWatch, we need to select the IAM Role that gives these permissions: Before we go ahead in creating our first flow log, we need to create the CloudWatch log group as well where the VPC flow logs data will go into. In order to do it, go to CloudWatch, select the Logs tab. Name the log group according to what you need and click on Create log group: Once we have created our log group, we can fill the Destination Log Group field with our log group name and click on the Create Flow Log button: Once created, you will see the new flow log details under the VPC subtab: Create a test setup to check the flow: In order to test if everything is working as intended, we will start our test OpenVPN instance and in the security group section, allow inbound connections on port 443 and icmp (ping). This gives us the perfect base for a plethora of attackers detecting our instance and running a plethora of attacks on our server: Analyze flow logs in CloudWatch: Before analyzing for flow logs, I went for a small walk so that we can get a decent number of logs when we examine; thus, when I returned, I began analyzing the flow logs data. If we observe the flow log data, we see plenty of packets, which have REJECT OK at the end as well as ACCEPT OK. Flow logs can be unto specific interface levels, which are attached to EC2 instances. So, in order to check the flow logs, we need to go to CloudWatch, select the Log Groups tab, inside it select the log group that we created and then select the interface. In our case, we selected the interface related to the OpenVPN instance, which we had started: CloudWatch gives us the capability to filter packets based on certain expressions. We can filter all the rejected packets by creating a simple search for REJECT OK in the search bar and CloudWatch will give us all the traffic that was rejected. This is shown in the following image: Viewing the logs in GUI: Plain text data is good but it’s not very appealing and does not give you deep insights about what exactly is happening. It’s always preferred to send these logs to a Log Monitoring tool, which can give you deep insights about what exactly is happening. In my case, I have used Splunk to give us an overview about the logs in our environment. When we look into VPC Flow Logs, we see that Splunk gives us great detail in a very nice GUI and also maps the IP addresses to the location from which the traffic is coming: The following image is the capture of VPC flow logs which are being sent to the Splunk dashboard for analyzing the traffic patterns: The VPC Flow Logs traffic rate and location-related data The top rejected destination and IP address, which we rejected AWS Config AWS Config is a great service that allows us to continuously assess and audit the configuration of the AWS-related resources. With AWS Config, we can exactly see what configuration has changed from the previous week to today for services such as EC2, security groups, and many more. One interesting feature that Config allows is to set the compliance test as shown in the following screenshots. We see that there is one rule that is failing and is considered non-compliant, which is the CloudTrail. There are two important features that Config service provides: Evaluate changes in resources over the timeline Compliance checks Once they are enabled and you have associated Config rules accordingly, then you would see a dashboard similar to the following screenshot: In the preceding screenshot, on the left-hand side, Config gives details related to the Resources, which are present in your AWS; and on the right-hand column, Config gives us the status if the resources are compliant or non-compliant according to the rules that are set. Configuring the AWS Config service Let’s look into how we can get started with the AWS Config service and have great dashboards along with compliance checks, which we saw in the previous screenshot: Enabling the Config service: The first time when we want to start working with Config, we need to select the resources we want to evaluate. In our case, we will select both the region-specific resources as well as global resources such as IAM: Configure S3 and IAM: Once we decide to include all the resources, the next thing is to create an Amazon S3 bucket where AWS Config will store the configuration and snapshot files. We will also need to select IAM role, which will allow Config into put these files to the S3 bucket: Select Config rules: Configuration rules are checks against your AWS resources, which can be done and the result will be part of the compliance standard. For example, root-account-mfa-enabled rule will check whether the ROOT account has MFA enabled or disabled and in the end it will give you a nice graphical overview about the output of the checks conducted by the rules. Currently, there are 38 AWS-managed rules, which we can select and use anytime; however, we can have custom rules anytime as well. For our case, I will use five specific rules, which are as follows: cloudtrail-enabled iam-password-policy restricted-common-ports restricted-ssh root-account-mfa-enabled Config initialization: With the Config rules selected, we can click on Finish and AWS Config will start, and it will start to check resources and its associated rules. You might get the dashboard similar to the following screenshot, which speaks about the available resources as well as the rule compliance related graphs: Let’s analyze the functionality For demo purposes, I decided to disable the CloudTrail service and if we then look into the Config dashboard, it says that one rule check has been failed: Instead of graphs, Config can also show the resources in a tabular manner if we want to inspect the Config rules with the associated names. This is illustrated in the following diagram: Evaluating changes to resources AWS Config allows us to evaluate the configuration changes that have been made to the resources. This is a great feature that allows us to see how our resource looked a day, a week, or even months back. This feature is particularly useful specifically during incidents when, during investigation, one might want to see what exactly changed before the incident took place. It will help things go much faster. In order to evaluate the changes, we will need to perform the following steps: Go to AWS Config | Resources. This will give you the Resource inventory page in which you can either search for resources based on the resource type or based on tags. For our use case, I am searching for a tag value for an EC2 Instance whose name is OpenVPN: When we go inside the Config timeline, we see the overall changes that have been made to the resource. In the following screenshot, we see that there were a few changes that were made, and Config also shows us the time the changes that were made to the resource: When we click on Changes, it will give you the exact detail on what was the exact change that was made. In our case, it is related to the new network interface, which was attached to the EC2 instance. It displays the network interface ID, description along with the IP address, and the security group, which is attached to that network interface: When we start to integrate the AWS services with Splunk or similar monitoring tools, we can get great graphs, which will help us evaluate things faster. On the side, we always have the logs from the CloudTrail, if we want to see the changes that occurred in detail. We covered log monitoring and how to choose the right log monitoring tool for continuous security monitoring policy. Check out the book Enterprise Cloud Security and Governance to build resilient cloud architectures for tackling data disasters with ease. Read Next: Cloud Security Tips: Locking Your Account Down with AWS Identity Access Manager (IAM) Monitoring, Logging, and Troubleshooting Analyzing CloudTrail Logs using Amazon Elasticsearchlast_img read more