Archive for September, 2009
After long weeks of work, the new version of the PCI-DSS compliance with SCB (PCI compliance and forensics in auditing remote server access with SCB 2.0) is finished. SCB 2.0 has many new and interesting features that can be used for PCI compliance, for example gateway authentication that can connect general usernames to real users, the 4-eyes authorization and together with real-time monitoring, or the possibility to authenticate the users separately both on SCB and on the accessed server and implement a simple two-factor authentication process.
But not only SCB has changed since the previous release of this document: the PCI data security standard have been updated as well, so the entire document was checked for compliance with the requirements of PCI-DSS v1.2.1.
Originally I planned to add further sections to cover other types of compliance (e.g., COBIT) like in our other compliance whitepapers (Regulatory compliance and system logging with SSB and Regulatory compliance and system logging with syslog-ng), but after the updates this document is already 15+ pages long, so I decided to skip it. COBIT compliance will have to wait, and most probably will get a separate whitepaper anyway.
I have released the second edition of the SCB 2.0 adminguide, containing some corrections and fixes (seems that some screenshots were missing from the first edition), and also a description about recovering SCB clusters from split-brain situations (this happens when for some weird reason, both nodes think they are master, and start to collect audit trails … not a nice thing).
It is available in the usual PDF and HTML formats at the BalaBit Documentation Page.
I had some spare time and released a new version of our Regulatory Compliance and System Logging whitepaper, which deals with – surprise – using syslog-ng in environments where PCI, COBIT, or other compliance is important.
This update adds some features of syslog-ng 3.0, like a description and references of the pattern database, the new IETF-syslog protocol, etc.