• Restrict access to Application and System event logs

    Wayne Maples Posted On March 16, 2004
    0
    165 Views
    0



    By default, guests and unauthorized users can read the System and Application
    event logs (not the Security log). To restrict to authenicated users:

    Hive: HKEY_LOCAL_MACHINE
    Key: SYSTEM\CurrentControlSet\Services\EventLog\Application
    Name:
    RestrictGuestAccess
    Type: REG_DWORD
    Value: 1 Restrict access to Application log

    Hive: HKEY_LOCAL_MACHINE
    Key: SYSTEM\CurrentControlSet\Services\EventLog\System
    Name:
    RestrictGuestAccess
    Type: REG_DWORD
    Value: 1 Restrict access to System log

    Frank Heyne has made available a Windows NT
    Eventlog FAQ     .

    Post Views: 165

    Read Next



    Author

    Wayne Maples


    - Advertisement -
    Leave A Reply

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    • Featured Product

    • Featured Product

    • Join Our Newsletter

      Learn about the latest security threats, system optimization tricks, and the hottest new technologies in the industry.

      Over 1,000,000 fellow IT Pros are already on-board, don't be left out!

    • Latest Podcast

    • Featured Freeware

    • Recommended

    • Follow Us


    You are reading
    Restrict access to Application and System event logs
    Share No Comment