We've started to use ossim to cover this one, its got ossec inside as well as a ticket management system, snort, nagios and openvas/nessus it covers just about all of that section of the PCI.
hth, M. On Jan 6, 2010 10:00 PM, "Jeremy Hansen" <[email protected]> wrote: I'm going through the purgatory which is PCI compliance right now and the fact that PCI DSS point 11.4 is not mentioned in your PCI outline located here: http://www.ossec.net/ossec-docs/ossec-PCI-Solution.pdf has led the powers to be to believe that 11.4 is not covered by OSSEC. The requirement does not specifically mention NIDS vs HIDS. How is this interpreted? I assume to be fully covered, it would require a combination of OSSEC and a NIDS, such as snort. Does this make sense? -jeremy
