This is cache of http://feeds.feedburner.com/~r/AntonChuvakinPersonalBlog/~3/218487813/logs-accountability.html. Cache is the snapshot of article that we took when we index feed.
To see original page click here.
We are not affiliated with the authors of this article and not responsible for its content.
Logs = Accountability!
2008-01-17 13:49:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 

I was thinking about logs the other day :-)

And the following thought occurred to me: Logs = accountability.

So, what is accountability, really? Wikipedia defines it as "Accountability is a concept in ethics with several meanings. It is often used synonymously with such concepts as answerability, enforcement, responsibility, blameworthiness, liability and other terms associated with the expectation of account-giving."

Yes, there are many other mechanisms of accountability in an organization, but logs are the one that pervades all IT. And if you IT is not accountable, your business is neither. Thus, if you tend to not be serious about logs, be aware that you are not serious about accountability. Is that the message your organization wants to be sending?

Ignoring logs is not just stupid (due to losing that important resources for troubleshooting and security), it is not only illegal (due to various regulations), but it is also unethical! :-)

Technorati tags: ,
About me: http://www.chuvakin.org
 
Tags: logs, accountability, technorati tags, due, log management, organization, wikipedia defines, resources, responsibility
 
 
 
 
 
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia