Re: Keeping Logs files for how long?

It doesn't matter, so long as the length of time before recycling tapes
1) meets generally agreed industry standards or specific legal
requirements, 2) has the CEOs signature approval on it and 3) is
absolutely followed. If you get sued, you have a policy and follow it
(and always know where the backups are), which will save you a lot of
grief. Your company can revisit the policy after that reduced
settlement for the next time...

Thor (Hammer of God) wrote:
From my POV, it comes down to money plus any "legal requirements."

Since you're asking other's opinions on it, I'll assume you are not
required by law to keep logs for any particular reason for time period.
If true, then it really comes down to how much money you are willing to
spend to keep logs for X period.

Large format tape media is pretty expense for single use "backup and
keep" strategies. But you can get hard drives pretty cheap these days
-- in my previous life, I had scripts that would take monthly logs,
compress them, and copy them over to removable drives. We'd just take
the drives out of the USB chassis and store them. I just built a couple
of drives a month into the budget -- that way you have copies going back
as long as you would like. If I ever needed anything, we'd just drop
the drive into the chassis and get what we wanted. If not, then it was
already built into the budget.

Of course, different environments dictate different things, but it
usually comes down to how much a month it would cost to store the logs,
and if you are willing to spend it perpetually.

t



-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx
[mailto:listbounce@xxxxxxxxxxxxxxxxx] On Behalf Of Petter Bruland
Sent: Thursday, February 07, 2008 9:26 AM
To: focus-ms@xxxxxxxxxxxxxxxxx
Subject: Keeping Logs files for how long?

Over the last few weeks we've gotten a bunch of good advice on what
software/hardware to use, in order to capture logs from all sort of
networked devices.

One thing we have not really talked about, is how long do we usually
keep logs. And do we ever back them up?

Any feedback on how you handle the log data, or best practices for
handle log data, would be greatly appreciated.


-Petter


Relevant Pages

  • Re: New Mailbox Store or New Storage Group?
    ... the logs and db's be on seperate spindles. ... I can only add two more drives to this server which will become the e: ... >>way to go is to create a new storage group and add a mailbox store in it. ...
    (microsoft.public.exchange.admin)
  • Re: Hardware + Exchange 2003
    ... I will put the log files on the mirrored 36gb drives, ... the logs ... > created and what the allocation unit size is. ... > recommend building the server through a process that results in a 4K ...
    (microsoft.public.exchange.setup)
  • Re: External backup/restore - an idea - comments please
    ... After you copy off the unmirrored drives ... When I say mirrored I mean OS or drive vendor mirroring. ... SANS that did double mirroring for this kind of backup. ... Now this doesn't solve point in time backups using the logs. ...
    (comp.databases.informix)
  • Re: XPE on 2 drives with EWF
    ... Another approach you may find helpful is exploring settings pages and resources of corresponding components. ... Dr. Watson, WBEM logs, System Variables: ... possible with the two drives. ... folder to a different drive. ...
    (microsoft.public.windowsxp.embedded)
  • Re: Hard Disk Setup for new Exchange 2003
    ... I would personally want to put the log files on the ... RAID drives. ... > ATA drives is questionable we would be risking losing the logs if that ...
    (microsoft.public.exchange.setup)
Quantcast