I absolutely loved your article. I think that my perspective regarding event logs as changed, and I feel more confident regarding the subject. I really appreciated this share. Event logs are local files recording all the ‘happenings’ or, what I call the ‘activities’ on the system, and it includes accessing, deleting, adding a file or an application, modifying the system’s date, shutting down the system, changing the system configuration, etc. Events are classified into System, Security, Application, Directory Service, DNS Server & DFS Replication categories. Directory Service, DNS Server & DFS Replication logs are applicable only for Active Directory. Events that are related to system or data security are called security events and its log file is called Security logs.
Excellent article and fantastic share.