Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 1102 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Logging Updates - Sophos SUM Manager - PCI DSS

piccolo

Hi,

PCI DSS 2 requires that the updates of the AV Database (Server Side / CID Distribution Point) are logged.

how can i saddisfy this requirement ?


automatic report of the log (updating av patters ....) would be fine , or also syslog.

can i do this with the reporter logwriter ?

Thanks

:35757


This thread was automatically locked due to age.
  • 0

    Hello piccolo,

    looking at the standard I assume you are talking about sections 5.2 and 10.7.Furthermore it's about SUM updating the CID(s) and not updates of the endpoint component, correct?

    I have no experience with the standard but as far as I understand it the SUMLogs should provide this information. This is of course just my personal assessment - you might want to check with Support or your sales rep whether this satisfies the PCI DSS. A new log is opened each day so it'd be simple to put them to long-term storage. The size depends on your configuration and the activity - you can expect at least 1MB per day. 

    Christian

    :35763