cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Visit the PTCooler (the community lounge) to get to know your fellow community members and check out some of Dale's Friday Humor posts! X

Windchill logs Editable

Go to solution
AP_10483126
10-Marble
10-Marble
‎May 17, 2024 04:41 AM
‎May 17, 2024 04:41 AM

Windchill logs Editable

If Windows is hosted on the Windows OS can the old and current logs be editable?

0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
avillanueva
22-Sapphire I
22-Sapphire I
(To:AP_10483126)
‎May 17, 2024 07:44 AM
‎May 17, 2024 07:44 AM

Can you clarify what you mean? Are you referring to adding comments?

avillanueva_0-1715945942107.png

 

I am not sure why the OS should have any bearing on this. Logs should be restricted to only the user who runs Windchill. This would prevent someone from removing logs to cover tracks of a breach. Ideally, you should be collecting logs to a central threat detection package for log analysis. These are just text files so if you grant access, they are editable. 

View solution in original post

0 Kudos
Notify Moderator
5 REPLIES 5
avillanueva
22-Sapphire I
22-Sapphire I
(To:AP_10483126)
‎May 17, 2024 07:44 AM
‎May 17, 2024 07:44 AM

Can you clarify what you mean? Are you referring to adding comments?

avillanueva_0-1715945942107.png

 

I am not sure why the OS should have any bearing on this. Logs should be restricted to only the user who runs Windchill. This would prevent someone from removing logs to cover tracks of a breach. Ideally, you should be collecting logs to a central threat detection package for log analysis. These are just text files so if you grant access, they are editable. 

0 Kudos
Notify Moderator
AP_10483126
10-Marble
10-Marble
(To:avillanueva)
‎May 17, 2024 08:15 AM
‎May 17, 2024 08:15 AM

I mean when something is logged for a user can the person having the administrator access edit the logs and delete those ?

0 Kudos
Notify Moderator
avillanueva
22-Sapphire I
22-Sapphire I
(To:AP_10483126)
‎May 17, 2024 08:22 AM
‎May 17, 2024 08:22 AM

Not from the web interface. Yes, its a text file. Anything is possible. What the case why you would delete it?

0 Kudos
Notify Moderator
AP_10483126
10-Marble
10-Marble
(To:avillanueva)
‎May 17, 2024 08:24 AM
‎May 17, 2024 08:24 AM

So an administrator would eb able to alter the logs. The security team wants to understand if the logs are editable by whom?

0 Kudos
Notify Moderator
HelesicPetr
22-Sapphire I
22-Sapphire I
(To:AP_10483126)
‎May 21, 2024 02:30 AM
‎May 21, 2024 02:30 AM

Hi @AP_10483126 

Standard Windchill user does not have access to the logs, and to the server.

A Person who has an access to the server, and can see the Windchill folder, and has windows rights then the person can edit the logs

What @avillanueva has mentioned with commenting the logs, this operation can do only Windchill administrators 

PetrH

AVENG
0 Kudos
Notify Moderator
Top Tags