Any way to prevent certain event logs in NT? | Off Topic

You are not logged in. [Log In] empegbbs.com » Forums » General Discussion » Off Topic » Any way to prevent certain event logs in NT?

Topic Options

#92656 - 08/05/2002 17:11 Re: Any way to prevent certain event logs in NT? [Re: wfaulk]
tfabris carpal tunnel Registered: 20/12/1999 Posts: 31614 Loc: Seattle, WA	I was hoping for something simple that didn't involve redirecting or rewriting the log file.... I've found a couple of things which might help. I'm going to experiment with them: - If the irritating app in question can be set to run under a different user name, I think you can set the security policy of that application in such a way so that it doesn't have the "Manage and audit logs" privilege. - There is a setting under HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application called "SOURCES" which has a list of services which can write to the log. If I'm lucky, simply deleting the offending app from this list will kill its ability to write to the log. Dunno yet, gotta experiment. _________________________ Tony Fabris
Top

Entire topic
Subject	Posted by	Posted
Any way to prevent certain event logs in NT?	tfabris	08/05/2002 16:32
Re: Any way to prevent certain event logs in NT?	wfaulk	08/05/2002 16:46
Re: Any way to prevent certain event logs in NT?	tfabris	08/05/2002 17:11