Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Duration of log retention?

from [Chris Dalton] Network Security [Permanent Link]
Subject: Re: Duration of log retention?
Date: Fri, 16 Jun 2006 07:47:43 -0500 
Check with your internal or external auditors.
There may be guidelines they want you to comply with.
What is maintained may be dependent on the risk of the activity.
The system owner should perform a risk assessment of the system.
This risk assessment should guide you in retention.

Chris G. Dalton C.P.A.
Corporate Audit Services
Capital One Financial
1-504-533-6419 phone
1-504-533-2355 fax


"" <huangmin@css.com.cn> 06/11/06 7:51 AM >>>

Anti-Virus log?
are you working for a security event managemnet project?
  ----- Original Message ----- 
  From: Doug Fox 
  To: security-management@securityfocus.com 
  Sent: Thursday, June 08, 2006 10:04 AM
  Subject: Duration of log retention?


  I am searching for retention duration for various logs.  Any input
are much appreciated. 

  Firewall log - 1 year
  IDS log - 1 year
  IPS log - 1 year
  Router log - 1 year
  Switch log - 1 year
  Windows server: Security log - 1 year
  Windows server: Application log - 3 months
  Windows server: Systems log - 3 months
  *IX server - security log equivalent - 1year
  RACF (mainframe) logs - 1 year
  Database - ?? log
  What-else have I missed?


  Many thanks in advance.

  DF
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Web-usage policies, Miguel Ángel Ripalda Marín
Next by Date:  Re: Web-usage policies, List Spam
Previous by Thread:  Re: Duration of log retention?, éæ
Next by Thread:  RE: Duration of log retention?, Warren Camp
Indexes:  [Date] [Thread] [Top] [All Lists]