Which of the following is NOT considered a best practice for managing logs?

Study for the Fortinet FortiAnalyzer 6.4 Test. Use interactive flashcards and multiple choice questions with detailed explanations. Be exam-ready!

Filtering essential data only is not considered a best practice for managing logs because it suggests that only specific pieces of information are deemed valuable for retention, which may lead to the loss of critical context or relevant data that could be necessary for future analysis, compliance, or incident response.

In effective log management, a comprehensive approach is essential. Documenting what is being logged and why ensures clarity and accountability. Centralizing log storage and standardizing formats enhances accessibility and consistency, making it easier to analyze logs across different systems. Maintaining a backup of logs is crucial for data integrity and compliance, ensuring that logs are available in case of data loss or corruption. Therefore, while filtering is useful for reducing noise in analysis, it should not lead to exclusion of logs that might have indispensable information for a broader context or further investigations.

Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy