Carnegie Mellon University Website Home Page
 
Skip navigation and jump directly to page content
Documentation Index
Security
Windows XP Machines
Step 1: Install Symantec AntiVirus
Step 2: Run Microsoft Update
Step 3: Configure Windows Firewall
Step 4: Disable File Sharing
Step 5: Secure Accounts & Passwords
Step 6: Set Screen Saver Password
Step 7: Configure Event Logs
Step 8: Configure Auditing Policies
Additional Security Tips
Advanced Steps
Accounts
Network, Phone & TV
Software
Email & Calendar
Secure Your Computer
Clusters & Printing
Web Services
Classroom & Event Support
Education & Outreach
Support & Repair
Information Security Office (ISO)

Step 7: Configure Windows Event Logs

Windows records system events, software changes, and some system setting change occurrences in the Windows Event Logs. By default these logs clear events older than 7 days because the log size is too small.

If your computer becomes compromised, keeping more logging information increases the chances that experts will be able to determine how and when the compromise occurred. This information is also useful in diagnosing other system and performance problems.

To increase the log size, follow these steps:

  1. Click Start > Control Panel.
  2. Double-click Administrative Tools and then Event Viewer.
  3. In the left pane, select Application.
  4. Choose Action > Properties.
  5. Set the following:
    • Maximum log size: 10240KB
    • Select Overwrite events as needed
  6. Click OK to save the settings.
  7. Repeat Steps 3 through 7 for Security and System. Then, close the window.

next stepStep 8: Configure Local Security Auditing Policies

Last Updated: 01/12/07