March 11, 2005

Keeping the noise down in your security log

Eric posted an interesting article on how to cut down the noise of the security log in Windows Server.

He points out a lot of interesting tidbits. I don't agree with them all, but that's just me. I'd rather wrestle with a little more noise on a hardened server and have too MUCH logs rather than not enough when doing a forensic audit. Of course, most people aren't even LOOKING at their logs, so its a moot point.

Overall though, a very useful article on how to cut down the noise in your security logs on some areas of the system which are not that beneficial for you. Worth checking out.

Happy reading.

Posted by SilverStr at March 11, 2005 03:02 PM | TrackBack

"...and have to MUCH logs rather than..."

"...and have too MUCH logs rather than..."

In addition; also: He's coming along too.

OK, I'm being pernickety ;)

Posted by: Spelling Police at March 14, 2005 12:43 AM

No kidding. :P

Posted by: SilverStr at March 14, 2005 07:49 AM