[jve]

Firing talent because of age is not so smart I think. Of course I don't know who they fire, etc.

But I'm young, yeah, and I want to distance myself from IBM products.

Why? I'v been setting IBM Tivoli/Spectrum protect to backup client computers and, ugh, is it ugly, unfriendly and complex piece of software. I'v also touched the server part. Maybe it's just me, the windows guy (but who loves scripting) and it is more appealing to linux-type guys. Then I got feedback from Linux team that they also don't love that product.

They should do something about their products or product managers to be more appealing.

After 1hr they will present IBM QRadar to us. Perhaps it will be a pretty presentation and so. I just wonder what's it under the hood, when sysadmins put their hands on it - any experiences someone can share?

[pas]

The simple fact, that IBM stuff is never used by big sites (fb, spotify, google, etc..) despite their solutions being available for ages should lead anyone to the conclusion that they are salesware.

QRadar is a glorified syslog server with a query interface (bought by IBM in 2011, formerly developed by Q1 Labs, est 2001), and ... again the fact that Splunk is available (started 2 years after Q1 Labs), that the ELK stack is even mentioned in SIEM circles, that OSSIM an open source alternative is seen as more usable all just point to the conclusion that QRadar too is just salesware :/

[ChuckNorris89]

> The simple fact, that IBM stuff is never used by big sites (fb, spotify, google, etc..) despite their solutions being available for ages should lead anyone to the conclusion that they are salesware.

They are used by big sites, governments are the biggest sites you can get.

[majkinetor]

Gov systems are orders of magnitude smaller then Facebook & friends.

[dta3456]

I don't think QRadar is Salesware, we use it in our SOC and it's not bad. It's serviceable at least.

[pas]

What does serviceable means for QRadar?

[klausjensen]

What's salesware?

[tmikaeld]

Sales people pitch it to executives, shows some fancy demo and then sign a contract that's "appealing" in cost and "savings".

[lboc]

Ugly, unfriendly and complex is par for the course with enterprise software in my experience :)

Having said that, TSM (what they called it before the rebranding) was the only commercial offering we found that would reliably back up and recover our systems...

[hinkley]

IBM Global Services in particular have left a bad taste in my mouth and many others. That sort of bad blood is going to be hard to overcome. But the kids are for the most part unfamiliar with their... exploits.

[majkinetor]

IBM QRadar is not different, just like anything else IBM sells nowdays. For example, to send custom logs from application you need to read bunch of confusing PDF's while at the same time most FOSS systems have single curl call to do so (or something equally trivial).

[tomjen3]

The only IBM product I recall that I am really happy with is their Model M, and my first IBM thinkpad (still happy with the thinkpads, but they sold to lenovo).