You know you need to do some logging, but you are a bit lost on what to log, how to log it and where to store it. You need to head on over to Anton Chuvakin's blog, Security Warrior, and get to reading.
He also is the co-author of an excellent book on PCI compliance, PCI Compliance: Understand and Implement Effective PCI Data Security Standard Compliance, second edition - updated for PCI DSS v 1.2. Although it is for version 1.2, it is still germane and I suspect an update is forthcoming at some point.
Some things to read from his blog archive:
Complete PCI DSS Log Review Procedures Series
Top 10 Things Your Log Management Vendor Won't Tell You
Checking My 2010 Security Predictions
You can also follow Anton on Twitter. He is @anton_chuvakin.
As always, comments are welcome below or you can email me at kriggins@infosecramblings.com if you prefer.
If you are interested in getting my content regularly, go ahead and subscribe to my RSS feed. You can also subscribe to have posts emailed to you if you prefer.
-Kevin
{ 0 comments… add one now }