This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PCI question

Hi all,

Here's a shot in the dark....

Would it be possible to configure the rules such that on detection of a sequence of characters, or rather a pattern, or patterns of characters that matched say ... a credit card number, for the system to record the source IP / date / time etc of the request?

This way, I could place the ASG between my legacy financial systems and log the accesses to CC data.

I guess this is a bit of a distraction from IDS/IPS rules, but it may help my requirements.

Thanks

This thread was automatically locked due to age.

Parents

0 BarryG over 18 years ago

In 6.x, you can add your own Snort rules in the IPS settings.
You could write a regex rule that matches CC #'s.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 18 years ago

In 6.x, you can add your own Snort rules in the IPS settings.
You could write a regex rule that matches CC #'s.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 FreudianSlip over 18 years ago in reply to BarryG

Cheers BarryG - I'll do some digging.
Cancel
Vote Up 0 Vote Down

Cancel