Details
Log rotation ensures log files do not consume excessive disk space, potentially causing a denial of service.
Rationale:
Log files are important to track activity that occurs on your server, but they take up significant amounts of space. Log rotation should be configured in order to ensure the logs do not consume so much disk space that logging becomes unavailable.
Solution
Follow the below procedure to change the default configuration to the recommended log rotation configuration. You may need to manually edit or change the below command if the configuration is not the default.
To change log compression from daily to weekly:
sed -i ‘s/daily/weekly/’ /etc/logrotate.d/nginx
To change log rotation from every year to every 13 weeks:
sed -i ‘s/rotate 52/rotate 13/’ /etc/logrotate.d/nginx
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Audit and Accountability.This control applies to the following type of system Unix.