Hey List. I'm learning about Windows auditing. As I read up on the subject, I'm curios what most of you guys are auditing...
Login attempts? Failures? File access attempts for all users? Do you log only on the servers, or workstations as well? How big do you make your security event log? Is there a bunch of "noise" in the log from various cache files? Thanks for the info. --Matt Ross ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
