• What credit card info can I store while being PCI compliant?

    Would anyone happen to know what credit card information I'm allowed to store while still being PCI compliant if I'm relying on braintree for payment processing? Are we allowed to store this information: Last 4 digits of credit cards Card type Cardholder name Thanks!

    ITKE366,420 pointsBadges:
  • How to secure CFID for PCI compliance

    For the past few weeks, our PCI scans keep failing because ColdFusion has predictable CFIDs. This is what we get as the failure: Predictable Cookie Session IDs. Our CFID is still predictable and unaffected by any changes in CF Admin. We don't understand why it's a threat but we have to fix it. What...

    ITKE366,420 pointsBadges:
  • Apache configuration to become PCI compliant

    For Apache, we need to make sure of PCI compliance by limiting mod_ssl to SSLv3 and TLSv1 (and also ensuring long keys). We've tried the below configuration but combos of the SSLv2 are still valid. SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM Is there a way completely disable the...

    ITKE366,420 pointsBadges:
  • Upgrade PHP and Apache versions for PCI compliance

    We're currently running Ubuntu for our LAMP environment. For the past week, we've been trying to become PCI compliant so we can pass CC information into our server. When doing the scans, we keep getting these errors regarding our PHP and Apache versions. The PHP version is about 10 versions less...

    ITKE366,420 pointsBadges:
  • PCI compliance for storing SSNs in a hosted database

    Do we have to be PCI compliant when it comes to storing SSNs in our hosted database? We're a nonprofit and it would be hosted in a CRM database. Thank you.

    ITKE366,420 pointsBadges:
  • Where to start for developing a payment gateway in PHP

    I'm trying to develop a payment gateway in PHP and I'm not sure where to start (when it comes to best practice for SSL and PCI DSS). Can anyone point me where to start my search? Books or blogs, perhaps?

    ITKE366,420 pointsBadges:
  • How to offer a high availability database environment

    Can I configure VMware Fault Tolerance, or another VMware technology, to host an active DB2 database at one data center, and host a standby DB2 database at a second data center? Applications would access the primary DB when available, and then access the standby DB if the primary failed. The data...

    JimInTexas5 pointsBadges:
  • Most important software for cybersecurity

    What is the most important software and threads for cybersecurity?

    priyankabaskaran5 pointsBadges:
  • SSL/TLS cipher suites for PCI compliance

    I have a question when it comes to PCI DSS compliance and SSL/TLS cipher suites. What order / priority should I list the ciphers in? I already know which ones I need to use and disable, but my friend said there's a priority list too. This will be for Windows servers. Thank you.

    ITKE366,420 pointsBadges:
  • How to write unique domain authentication identifier

    How do I write udai (unique domain authentication identifier)?

    ramuyadav20 pointsBadges:
  • Security Alerts: What is tsassist.exe and browsefox.exe?

    What is tsassist.exe and browsefox.exe? My security software flags these trying to modify my registry.

    dvaughn15 pointsBadges:
  • How to secure e-commerce website?

    Hi there, I am doing my final year R&D project on how to secure e-commerce website? I am mainly looking to secure owasp top 10 threats. Would you be able to give me any advise about the steps and tools and also guidelines that I should follow to successfully overcome those issues? Kindest...

    anayatullah10 pointsBadges:
  • Would Rails 3.0 be PCI compliant?

    I apologize for the short question but would anyone happen to know if Rails 3.0 would pass a PCI compliance scan? Thanks!

    ITKE366,420 pointsBadges:
  • Hacking for beginner

    Which Macbook is best for hacking?

    HNYBGR78785 pointsBadges:
  • PCI compliance failure: Attempts some buffer overflows

    We were PCI compliant for several months straight and all of a sudden, we got this: Fail Serious Port: 21 Protocol: tcp Summary : attempts some buffer overflows CVSS Base Score : 10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C) CVSS Temporal Score : 8.3 (CVSS2#E:F/RL:OF/RC:C) Public Exploit Available : true...

    ITKE366,420 pointsBadges:
  • What is Log Pos malware?

    What is LogPos malware like date of the malware detected, coding language, command and control channel, infecting mechanism, hiding mechanism, impact till date?

    apalkar905 pointsBadges:
  • Fingerprint recognition in Java

    I want a programing source code for fingerprint recognition time and attendance payroll system in Java language. I also want the source code for capturing a fingerprint image and storing in MS Access in Java language for the same project.

    Anikketthakre5 pointsBadges:
  • Web application firewall for IIS

    Does anyone know what's the best web application firewall (WAF) for IIS? Also, is it useful for blocking attacks against poorly written code? I understand that WAF is required by PCI DSS so our organization needs to get one.

    ITKE366,420 pointsBadges:
  • Does temporary storage of credit card info meet PCI DSS requirements?

    For our department, we need to make sure that our temporary storage of our user's credit card information meets PCI DSS requirements. We have to make sure that deletion is compliant DoD's security standards. We thought about using MySQL but we're not sure about the reliability. What should we do?

    ITKE366,420 pointsBadges:
  • Secure credit card information for PCI compliance

    Does anyone know if there's a company / software that offers to store data (particularly credit card information securely) in exchange for a token? Also, can we view the data by using authentication and providing a token back to them? That should be enough for PCI compliance, right? Thanks!

    ITKE366,420 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following