This sums the situation up well, I believe. On 12/22/2016 02:18 AM, ianseeks wrote:
I think the journal keeping all the records is the only way, sure its storage heavy but it'll have to be done. I don't see how you can prove that your logs are secure i.e. not tampered with (by outsiders or insiders), to an independent reviewer if you do not keep every single record.
In order to be "bank Grade", that is to meet regulations such as COSO, HHIPC and many others, Suse ABSOLUTELY MUST supply this high integrity logging system.
But if you are in an industry that does not legally mandate keeping every record then i guess you can do what you like with the data as its irrelevant to anyone else
As Carlos makes clear, you can turn it off and drop back and edit/filter your logs if those legal constraints are not present. -- A: Yes. > Q: Are you sure? >> A: Because it reverses the logical flow of conversation. >>> Q: Why is top posting frowned upon? -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org