Securing Application and System logs on WinNT/2K

From: Martin Brys (MBrys@mvsinc.com)
Date: 02/12/02


From: Martin Brys <MBrys@mvsinc.com>
To: focus-ms@securityfocus.com
Date: Tue, 12 Feb 2002 12:17:56 -0500

Does anyone know a method to secure Application and System Event Logs to
allow viewing only to Administrators? Restrictive permissions are set by
default for Security Event Log, can we achieve the same or similar behavior
for other logs (hopefully including Directory Services, DNS and File
Replication Service on Domain Controllers)? Any hints would be appreciated.

Martin Brys MCSE