Arggg, dreaded PCI-DSS questionnaire
Driving me crazy....
Example:
So what implications does this have for my dedicated server that runs webserver, database, etc?2.6 Is only one primary function implemented per server? (SAQ #2.2.1)
The "one primary function" rule applies to all servers that are in-scope and it must be part of the written configuration standard. Multiple primary functions (like: "web server", or "authentication server") cannot be running on a single system.
Results 1 to 5 of 5
Thread: Pci-dss
-
18-02-2010, 13:00 #1
Member
- Join Date
- Jan 2008
- Posts
- 51
Pci-dss
-
18-02-2010, 17:08 #2
Technical Support (eUKhost.com)
- Join Date
- Oct 2006
- Location
- localhost
- Posts
- 3,375
Hi,
Originally Posted by JonoB
Arggg, dreaded PCI-DSS questionnaire
Driving me crazy....
Example:
So what implications does this have for my dedicated server that runs webserver, database, etc?2.6 Is only one primary function implemented per server? (SAQ #2.2.1)
The "one primary function" rule applies to all servers that are in-scope and it must be part of the written configuration standard. Multiple primary functions (like: "web server", or "authentication server") cannot be running on a single system.
Whom is this PCI-DSS scanning being done from? ie: Cisco, Verizon? They are the strictest ones when it comes to such scanning. A more relaxed but valued scanning method can be performed from Hacker Guardian, McAfee, Comodo, etc. There are other vendors too which provide free PCI compliance scanning for your website/servers.. Regarding this query of having "one primary function" or one service per server, it's not mandatory & you can safely ignore it if it isnt listed as a Critical issue with the server security..
Rock _a.k.a._ Jack
Windows Hosting || Windows Reseller Hosting
Cloud Hosting || Powerful Dedicated Servers
Follow eUKhost on Twitter || Join eUKhost Community on Facebook
For complaints, grievances or suggestions kindly email our FeedBack Dept.
Proper action will be taken accordingly & instantaneously!
-
08-03-2010, 15:09 #3
new member
- Join Date
- Mar 2010
- Posts
- 2
Does hackerSafe is offering free PCI scanning, I contacted them and they asked for roughly $1700... if you have a link for the free service it would be appreciated.
-
09-03-2010, 00:40 #4
Technical Support (eUKhost.com)
- Join Date
- Oct 2006
- Location
- localhost
- Posts
- 3,375
Did you try McAfee or HackerGuardian yet? Originally Posted by RuthSam
Rock _a.k.a._ Jack
Windows Hosting || Windows Reseller Hosting
Cloud Hosting || Powerful Dedicated Servers
Follow eUKhost on Twitter || Join eUKhost Community on Facebook
For complaints, grievances or suggestions kindly email our FeedBack Dept.
Proper action will be taken accordingly & instantaneously!
-
09-03-2010, 08:07 #5
new member
- Join Date
- Mar 2010
- Posts
- 2
Sorry not yet, have been looking at McAfee, however, they are also not free as far as I know.
I'm in general not a big believer of Free PCI security scans, have been taking a trial with our current host which offered it for $50 compared to qualys who charge 10 times the fee I must say you also get 10 times the service and security level.
Anyway, I'm on to try some of the free services just to compare them and check if they are really doing what they say they do.
Reply With Quote
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- Need Help ?
- Client Area
- Sitemap
- Help Center
- Tutorials
- Testimonials
- Legal Information
- Terms of Service
- Service Level Agreement
- Privacy Policy
- Billing Policies
- VPS Rules & Guidelines
- Resources
- Web Hosting Forum
- Web Hosting Blog
- Knowledgebase
- PARTNERS
- Affiliate Program
Copyright © 2001-2012, eUKhost LTD. All rights reserved.
0808 262 0255 | Stay Connected
