Conventional location of log/audit files generated by a Windows application RRS feed

  • Question

  • I am maintaining a Windows 8 program that can be run from Standard accounts but generates log and audit text files that must be protected against deletion or tampering from the same accounts, but are accessible (for reading at least) to an Administrator account (the user's boss, say).

    1. Is there a conventional location for such files (or a dedicated subfolder at a conventional location)? If so, where is that?

    2. What special permissions, if any, must be set on the program and/or the location (or subfolder), to allow the program write access to the location and files from a Standard account but not other programs?

    My knowledge of Windows security matters, permissions etc. is pretty thin.

    Tuesday, May 6, 2014 5:11 AM