Frobert@Balabit

Documentation updates about syslog-ng and other BalaBit products

ABOUT



Name:
Robert Fekete

Job title:
Technical Writer

Age:

Degree:
MSc in engineering-physics, English-Hungarian interpreting and translation

LinkedIn:
LinkedIn

Login

Archive for September, 2009

PCI compliance for remote server access with SCB 2.0

Tuesday, September 29, 2009 @ 01:09 PM Author: Robert Fekete

After long weeks of work, the new version of the PCI-DSS compliance with SCB (PCI compliance and forensics in auditing remote server access with SCB 2.0) is finished. SCB 2.0 has many new and interesting features that can be used for PCI compliance, for example gateway authentication that can connect general usernames to real users, the 4-eyes authorization and together with real-time monitoring, or the possibility to authenticate the users separately both on SCB and on the accessed server and implement a simple two-factor authentication process.

But not only SCB has changed since the previous release of this document: the PCI data security standard have been updated as well, so the entire document was checked for compliance with the requirements of PCI-DSS v1.2.1.

Originally I planned to add further sections to cover other types of compliance (e.g., COBIT) like in our other compliance whitepapers (Regulatory compliance and system logging with SSB and Regulatory compliance and system logging with syslog-ng), but after the updates this document is already 15+ pages long, so I decided to skip it. COBIT compliance will have to wait, and most probably will get a separate whitepaper anyway.

Tags: , ,
0 Comments

Shell Control Box 2.0 Administrator Guide, Second Edition

Thursday, September 24, 2009 @ 04:09 PM Author: Robert Fekete

I have released the second edition of the SCB 2.0 adminguide, containing some corrections and fixes (seems that some screenshots were missing from the first edition), and also a description about recovering SCB clusters from split-brain situations (this happens when for some weird reason, both nodes think they are master, and start to collect audit trails … not a nice thing).

It is available in the usual PDF and HTML formats at the BalaBit Documentation Page.

Tags:
0 Comments

syslog-ng Store Box Administrator Guide, Fitfth Edition

Thursday, September 24, 2009 @ 04:09 PM Author: Robert Fekete

I have released a new version of the SSB admin guide last week, which contains some minor updates to SSB 1.0.3: namely, hostlist policies can now be imported and updated from CSV files.

See Section 4.5.7 for details.

Tags:
0 Comments

Minor whitepaper update

Tuesday, September 8, 2009 @ 04:09 PM Author: Robert Fekete

I had some spare time and released a new version of our Regulatory Compliance and System Logging whitepaper, which deals with – surprise – using syslog-ng in environments where PCI, COBIT, or other compliance is important.

This update adds some features of syslog-ng 3.0, like a description and references of the pattern database, the new IETF-syslog protocol, etc.

Tags: , ,
0 Comments
Frobert@Balabit
Posts (RSS) and comments (RSS)