Information
Log retention should be reviewed to ensure logs are available to troubleshoot issues and investigate incidents. FireEye can rotate logs based on log size, size as a percentage of the /var partition, or a set period of time.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
Determine what works best based on your log generation, device capabilities, and organizational standards. Edit the configuration and add or modify these lines:\n
logging files rotation criteria frequency <daily|weekly|monthly>\n
logging files rotation criteria [size <size_in_MB>|size-pct <size_in_pct>]\n
logging files rotation max-num <number_of_files_to_keep>