Home > Ask the Enterprise Linux Experts > Security Questions & Answers > Snort Log retention
Ask The Enterprise Linux Expert: Questions & Answers
EMAIL THIS

Snort Log retention

James Turnbull EXPERT RESPONSE FROM: James Turnbull

Pose a Question
Other Enterprise Linux Categories
Meet all Enterprise Linux Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 11 April 2008
Is there any reason I should keep year-old snort log files? Only techs access the system and I need the space.

>
Is there a reason to keep year-old Snort logs? Well maybe. Most log retention decisions are based on one of the following factors:
  • policy
  • regulation
  • audit
  • capacity

    If your organization has a log retention policy, then the duration of retention should be documented. If your organization comes under the auspices of some regulatory body or document - Sarbanes-Oxley, for example - then this may mandate a retention period for certain types of transactions. If the log data isn't covered by either of these and you don't need it for any other purpose - like later investigation or audit - then I see no reason why it cannot be deleted.


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
DRBD (Distributed Replicated Block Device)  (SearchEnterpriseLinux.com)
gzip  (SearchEnterpriseLinux.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Linux Migration Advice: Unix-to-Linux, Windows-to-Linux
HomeNewsTopicsITKnowledge ExchangeTipsBlogsAsk the ExpertsMultimediaWhite PapersIT Downloads
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts