I have an issue that starting 8 weeks ago , because of some code changes , PCI information start getting printed in WCS logs. Now that information is parsed into elastic search and can be seen in kibana. Our security team want to remove that information. Can you suggest from below, what should we do -
- Mask the those specific fields with XXXXXXXX ?
- Can we delete those fields only from ES indices.
- Or we have to delete complete indices for 8 weeks which will be a huge loss for our ops team as they will not be able to debug the issue?