Why Collect Logs?
This poll asks the audience about the main driving reason for their log collection efforts.
Assuming that you centrally COLLECT system, network or security logs from their originating sources, what is THE MAIN reason for doing it?
| 7% (4) | It's a good security practice | |
|---|---|---|
| 23% (12) | It's a good system/network management practice | |
| 9% (5) | We need logs for possible investigations ("forensics") | |
| 7% (4) | We analyze/correlate logs to detect attacks | |
| 31% (16) | We need logs to troubleshoot system/network failures, errors and other availability issues | |
| 3% (2) | We need logs to analyze access trends (e.g. web traffic) | |
| 5% (3) | Regulatory reasons(PCI DSS) | |
| 7% (4) | Regulatory reasons(SOX) | |
| 0% (0) | Regulatory reasons(HIPAA) | |
| 0% (0) | Regulatory reasons(FISMA) | |
| 0% (0) | Regulatory reasons(other mandatory) | |
| 1% (1) | Regulatory reasons: non-mandatory (ISO, ITIL, COBIT, ISF, etc) | |
| 0% (0) | Other - please comment |
51 voters have answered this question.
This poll was created on 2007-10-29 18:48:55
by Anton_Chuvakin
