in order to meet the german laws for logging, i got the order to store the
elasticsearch indices in a revision/audit-proof way(Indices cannot be
edited/changed after the storage).
Are there any best practices or tips for doing such a thing?(maybe any
plugins?)
in order to meet the german laws for logging, i got the order to store the
elasticsearch indices in a revision/audit-proof way(Indices cannot be
edited/changed after the storage).
Are there any best practices or tips for doing such a thing?(maybe any
plugins?)
in order to meet the german laws for logging, i got the order to store
the elasticsearch indices in a revision/audit-proof way(Indices cannot be
edited/changed after the storage).
Are there any best practices or tips for doing such a thing?(maybe any
plugins?)
Yeah it looks like that this would do the job, thanks for response
Am Donnerstag, 22. Mai 2014 10:40:19 UTC+2 schrieb Mark Walkom:
You can set indexes to readonly - http://www.elasticsearch.
org/guide/en/elasticsearch/reference/current/indices-update-settings.html
Is that what you're after?
in order to meet the german laws for logging, i got the order to store
the elasticsearch indices in a revision/audit-proof way(Indices cannot be
edited/changed after the storage).
Are there any best practices or tips for doing such a thing?(maybe any
plugins?)
You have to add a facility to your middleware that can trace all authorized
operations to your index (access, read, write, modify, delete) and you must
write this to an append-only logfile with timestamps.
If there is interest I could write such a plugin (assuming it can run in a
trusted environment regarding authorization tokens) but I think best place
is in a middleware (where an ES client runs in a broader application
context e.g. transaction awareness).
in order to meet the german laws for logging, i got the order to store the
elasticsearch indices in a revision/audit-proof way(Indices cannot be
edited/changed after the storage).
Are there any best practices or tips for doing such a thing?(maybe any
plugins?)
I will contact you if there´s a need for such an plugin in our company.
Also i will keep you up to date if there´s breaking changes in our project.
Am Donnerstag, 22. Mai 2014 10:55:44 UTC+2 schrieb Jörg Prante:
You have to add a facility to your middleware that can trace all
authorized operations to your index (access, read, write, modify, delete)
and you must write this to an append-only logfile with timestamps.
If there is interest I could write such a plugin (assuming it can run in a
trusted environment regarding authorization tokens) but I think best place
is in a middleware (where an ES client runs in a broader application
context e.g. transaction awareness).
Jörg
On Thu, May 22, 2014 at 10:36 AM, horst knete <badun...@hotmail.de<javascript:>
wrote:
Hey guys,
in order to meet the german laws for logging, i got the order to store
the elasticsearch indices in a revision/audit-proof way(Indices cannot be
edited/changed after the storage).
Are there any best practices or tips for doing such a thing?(maybe any
plugins?)
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.