Document

Effective log file management

Created:  21 Oct 2016
Updated:  21 Oct 2016
CPNI Archive

Archive content originally produced by CPNI that has not yet been absorbed into the new NCSC web pages.

Log files are historical records of the running state of hardware and software, storing information on how they are used, errors that occur and application specific events which detail how users interact with them. Where logging is switched on for appropriate components of an IT infrastructure, providing timely information to correctly configured management tools, the use of log files can raise reliable alarms with low error rates. Good management of log files is also key to successful post-incident investigations and will assist an organisation in determining the source of problems and weaknesses with existing protective security measures.

The attached consists of:

  • a detailed report on the subject of Effective Log File Management - including log sources, log analysis, case studies - is intended for management with a technical background / interest.
  • a booklet to accompany the full report which is a summarised version of the full report, also intended for use by intended for management with a technical background / interest.

2014-04-02-Effective Log Management.pdf

PDF, 1042.38KB

This file may not be suitable for users of assistive technology.

2014-05-07-Effective Log Management Booklet.pdf

PDF, 283.04KB

This file may not be suitable for users of assistive technology.

Was this document helpful?

We need your feedback to improve this content.

Yes No