How do I secure a custom event log

From: Chris Stagnaro (anonymous_at_discussions.microsoft.com)
Date: 05/27/04

• Next message: Amit Rahul [MS]: "Re: DPAPI protection credentials used with smartcard logons"
• Previous message: SatB: "LogonUser fails with no password in W2k3"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Thu, 27 May 2004 11:01:06 -0700

Our application was developed on W2K. We created a service that has elevated privleges so that it could write to the security log. This was necessary to satisfy our customers audit requirements.

Under Windows XP only the LSAS is allowed to write to the security log. Therefore our service now fails and out application is not allowed to run if it cannot perform its required audits.

It was simple to create a custom event log. But I need the security attributes of the Security Event log, e.g. only adminstrators can clear the log, the clearing of the log is an audited event, etc. Does anyone know if it is possible to accomplish this, and if so, can you point me to any information that explains it.

Thanks,
Chris

---

• Next message: Amit Rahul [MS]: "Re: DPAPI protection credentials used with smartcard logons"
• Previous message: SatB: "LogonUser fails with no password in W2k3"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.platformsdk.security  > 2004-05