I would like to know your thoughts about the log policy retention and how to improve it.
Currently, unless otherwise specified, logs are kept for 52 weeks (one year), but many important sections have specific settings, for example the web proxy logs are kept for just 4 weeks.
I personally would like to modify the log retention policy in a simpler way than going through the logrotate files, a place where I can clearly see and modify the policies for each section.
A good starting point could be to templetize all the files in the /etc/logrotate.d/ directory, separating the rotate fragment from other ones and create a db where rotate values will be stored and can be changed.
It would be great to have a dedicated web panel, but maybe somebody could have more clever (and easier to implement) ideas.
What do you think about that?
Some of you have already done something similar?