True or False: You cannot limit the size of audit logs.

The assertion that you cannot limit the size of audit logs is false. Most operating systems and logging systems provide mechanisms to configure log size limits. This capability allows administrators to manage the amount of disk space used by logs while ensuring that sufficient data is retained for security and auditing purposes.

For example, in Linux systems, the audit daemon allows settings for maximum log file size, after which it can archive or rotate logs to maintain a manageable size. Similarly, Windows Event Logs can be configured to overwrite older entries or maintain a certain number of log files, effectively controlling the size of the logs.

Limiting log sizes is crucial for efficient log management, as it helps prevent excessive disk usage that could lead to system performance issues. Furthermore, it ensures that relevant data is retained without overwhelming the storage capacity of the system. Hence, the correct understanding is that audit logs can indeed have size limitations imposed by configuration settings.