PCI "Read Access" -- MIDRANGE-L

Subject: PCI "Read Access"
From: Steven Martinson <smart-consultant@xxxxxxxxxxxxx>
Date: Wed, 16 Apr 2008 12:47:16 -0700 (PDT)
List-archive: <http://archive.midrange.com/midrange-l>
List-help: <mailto:midrange-l-request@midrange.com?subject=help>
List-id: Midrange Systems Technical Discussion <midrange-l.midrange.com>
List-post: <mailto:midrange-l@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=unsubscribe>

Can anyone in this audience surmise how having *ALL OBJAUD on *PGM objects would buy an organization anything with regard to PCI critical object access monitoring? I say that if you have *ALL on the critical *FILE objects, the audit journal is already going to record Job Name, Job User, Job Number, Program Name, User Profile, Entry Type, etc., etc., and all that.

I would think (without testing it, so far) that have *ALL on heavily used programs in a fairly large organization would pound the audit journal unnecessarily.

Any and all input appreciated!

Best regards,

Steven W. Martinson, CISA, CISM, CISSP
Security Consultant
Cypress, Texas

Smart-Consultant@xxxxxxxxxxxxx
Mobile: 713.277.5845
Fax: 281.758.2429

As an Amazon Associate we earn from qualifying purchases.

Follow-Ups:

Re: PCI "Read Access" , rob
Re: PCI "Read Access" , smorrison

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.