Log files are historical records of the running state of hardware and software, storing information on how they are used, errors that occur and application specific events which detail how users interact with them. Where logging is switched on for appropriate components of an IT infrastructure, providing timely information to correctly configured management tools, the use of log files can raise reliable alarms with low error rates. Good management of log files is also key to successful post-incident investigations and will assist an organisation in determining the source of problems and weaknesses with existing protective security measures.
The attached consists of:
- a detailed report on the subject of Effective Log File Management - including log sources, log analysis, case studies - is intended for management with a technical background / interest.
- a booklet to accompany the full report which is a summarised version of the full report, also intended for use by intended for management with a technical background / interest.