I really don’t know about this. Encrypting our log information was literally one of the first things we did when starting our latest product.
We store maybe a few million customer records without any significant PII.
Now there is Facebook which apparently hasn’t even bothered? And is logging the full body of requests somewhere? That’s a major WTF, even for Facebook.
We store maybe a few million customer records without any significant PII.
Now there is Facebook which apparently hasn’t even bothered? And is logging the full body of requests somewhere? That’s a major WTF, even for Facebook.