We are preparing our SIEM in our company. We have WAF,IPS,IDS.
I have few questions about logs
1- Should we log HTTP request Post body?
2- Should we log HTTP response Body?
3- If we log HTTP request and body, should we log it in software or load balancer or web application server?
Thanks
Aucun commentaire:
Enregistrer un commentaire