Can audit logs in the Event Viewer have their size limits adjusted?

Disable ads (and more) with a membership for a one time $4.99 payment

Prepare for the MTA Security Exam with flashcards and multiple choice questions. Each question includes hints and explanations. Get ready for your certification test!

Audit logs in the Event Viewer can indeed have their size limits adjusted; therefore, the assertion that they cannot be adjusted is inaccurate. It is possible to configure the size of these logs, allowing administrators to determine how much space is allocated for them. This can be essential in managing system resources effectively and ensuring that critical log data is retained as long as needed for auditing or troubleshooting purposes.

In the Windows operating system, administrators can modify the properties of event logs through the Event Viewer. This includes setting maximum log size, enabling log retention policies, or configuring the log to overwrite old events when the log is full. These adjustments are helpful in environments where compliance with regulatory or corporate standards requires maintaining certain logs over specified time periods.

Other options, such as varying the limits based on log types or operating system distinctions, are not reflective of the capabilities inherent in event log management across both Windows and Linux systems.