| Is it a consensus best practice to restrict read access of | syslog/operlog data to those people with a need-to-know?
It is not, not least because the question itself is not well-formed. Need-to-know is a useful notion for highly sensitive information that lends itself to misuse in the wrong hands. For syslog/.operlog the operative question should instead be: Who, if anyone, needs to be prevented from accessing this information? The answer will then usually be no minimally qualified user. John Gilmore, Ashland, MA 01721 - USA ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
