|
|
|
|
|
|
by genmud
967 days ago
|
|
|
Full PCAP, process auditing and centralized logs are not only a thing, they have been for decades. It just simply isn't worth the investment for CIO/CTO/CISO types because it isn't sexy. To say it's impossible is just factually inaccurate. I know more than a few places doing 40gbps and 100gbps full packet capture for 30+ days. And relatively speaking, the investment isn't that large (for tens of petabytes it isn't as expensive as you might think). |
|
|