TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any problems!
----------------------------------------------------------------------------

Very true on the SQL gurus comment.....I was saying this the moment ISS
decided to go the SQL route when 6.0 was released. Anyway, I asked the same
question of ISS Tech support and they sent me the following. I have used and
it works rather well.

From ISS Tech Support:

To truncate events from your database and shrink the database back to the
original size, use the following commands. (NOTE: The following commands
will completely clear your database.)

c:\osql -E [enter]
1>use ISSED [enter]
2>go [enter]
1>iss_truncateevents [enter]
2>go [enter]
1>dbcc shrinkdatabase (issed, 0) [enter]
2>go [enter]
The above commands will clear events from the ISSED and shrink it back to
the original size.

Should be noted that the ISS Daemon on the Event Collector should be stopped
while performing this function. Events will not be lost, only stored on the
Local sensor until EC is back up.

Hope this helps!
Jim

-----Original Message-----
From: andres.friedlich.pwcglobal.com
[mailto:andres.friedlich.pwcglobal.com]
Sent: Wednesday, July 17, 2002 4:53 AM
To: issforumiss.net
Cc: ahedkuc01.kuniv.edu.kw
Subject: Re: MS SQL - Problem

TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any
problems!
----------------------------------------------------------------------------

Yo
I had the exact same problem yesterday, as I tried to delete 1.6GByte of
events out of the ISSED database.
Using the 'maintain' GUI from the RS Console, it takes about one hour to do
so...
ISS: Isn't there a kind of 'purge' function or so to do so?!? I find the RS
Console SQL database handling capabilities extremely rudimentary.... not
all RS users are SQL gurus you know...

Regards
Andres

                      "Eng. Ahed M.

                      Okasha" To:

                      <ahedkuc01.kuni cc:

                      v.edu.kw> Subject: MS SQL - Problem

                      Sent by:

                      owner-issforumi

                      ss.net

                      16.07.2002 07:17

TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any
problems!
----------------------------------------------------------------------------

Hi again,

My other problem is regarding the Database,
I'm using MS SQL 2000 as my Database for
RS 6.5 console, and I have 3 NS active and
Sending data to it.

My question is how to delete the records in
The database after backing it up? (Not using
The RS Console Configuration -> Enterprise Database
Configuration) I want it using SQL commands or
A 3rd party software.

Thanks,

Eng. Ahed M. Okasha
IT Security

_________________________________________________________________
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you received
this in error, please contact the sender and delete the material from any
computer.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]