Restrict access to Application and System event logs

Wayne Maples Posted On March 16, 2004

761 Views

By default, guests and unauthorized users can read the System and Application
event logs (not the Security log). To restrict to authenicated users:

Hive: HKEY_LOCAL_MACHINE
Key: SYSTEM\CurrentControlSet\Services\EventLog\Application
Name:
RestrictGuestAccess
Type: REG_DWORD
Value: 1 Restrict access to Application log

Hive: HKEY_LOCAL_MACHINE
Key: SYSTEM\CurrentControlSet\Services\EventLog\System
Name:
RestrictGuestAccess
Type: REG_DWORD
Value: 1 Restrict access to System log

Frank Heyne has made available a Windows NT
Eventlog FAQ .

Post Views: 761

Wayne Maples

Leave a Reply Cancel reply

Featured Product
Join Our Newsletter

Learn about the latest security threats, system optimization tricks, and the hottest new technologies in the industry.

Over 1,000,000 fellow IT Pros are already on-board, don't be left out!

I understand that by submitting this form my personal information is subject to the TechGenix Privacy Policy.
Latest Podcast
Featured Freeware

Download Free TFTP Server. The most trusted on the planet by IT Pros
Recommended
Follow Us

You are reading

Restrict access to Application and System event logs

Share No Comment

TECHGENIX
TechGenix reaches millions of IT Professionals every month, and has set the standard for providing free technical content through its growing family of websites, empowering them with the answers and tools that are needed to set up, configure, maintain and enhance their networks.
Recent Posts

Restrict access to Application and System event logs

Featured Links

Read Next

Wayne Maples

Leave A Reply

Leave a Reply Cancel reply

Featured Product

Latest Podcast

Featured Freeware

Recommended

Follow Us

Restrict access to Application and System event logs

TECHGENIX

Recent Posts