Firewalls: Logs

Firewalls
(August 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Logs - Backups
From:	"anthony.sabaj" <anthony . sabaj @ awo . com>
Date:	1 Aug 96 9:04:40
To:	firewalls-digest <firewalls-digest @ greatcircle . com>

Currently we tar and gzip our logs daily and back them off to another machine 
nightly and then run a process on another machine to look for nasty stuff,  
along with swatch running to notify us in real time for really nasty stuff.

The question I have is what people are doing with their firewall logs long 
term, putting them to tape, cd, compressing or archiving them on other 
machine.  How long do you keep them un-archived, how long do you keep them 
(forever, a year...), things like that.

You can respond privately or to the list if you think it is relevant.

Thanks in advance
________________________
Tony Sabaj
anthony .
 sabaj @
 awo .
 com
Andersen Worldwide
312-507-1689
BTW - My opinion are mine and do represent those of my employer - (thank God)
________________________

Indexed By Date	Previous:	Re: SSL, port 442, https From: "Roderick Murchison, Jr." <murchiso @ vivid . newbridge . com>
Indexed By Date	Next:	Re: Is any O.S. w/IP enabled C2 certified? From: "Alex Noordergraaf" <noorder @ shire . btg . com>
Indexed By Thread	Previous:	Re: PPTP thoughts anyone? From: "Tor I. Wilhelmsen" <toriw @ online . no>
Indexed By Thread	Next:	Re: Logs - Backups From: "Sean Fuller" <c60201 @ zone . arnold . af . mil>