Search results

The PCI-DSS requirements don't address POS equipment other than the cursory 'change the default passwords' and some generic network security/filtering requirements 1-2 meant to contain any breaches on the system level.  Requirement 3 (from which the screenshot refers to), controls only the long...

Please don't post it here.  This isn't HF.

PCI DSS compliance only covers best-practices, but won't stop stupidity. It seems track data was stolen over the course of a few weeks, suggesting a snooper was installed on the point of sale network. 

ps -eo pid,comm | awk '{ tmp="echo -n "$2" | openssl md5 | cut -f2 -d\" \"" tmp | getline cksum tmp2=cksum printf "%d %s\n", $1, tmp2 }' Basically, try printf Nifty idea, BTW.

For once, I totally agree 100% :D

We need a cesspit :P

So, are these sunk because they reference the infamous companies, or are they sunk because people are being assholes? 

For christ's sake, can we just keep this crap in one thread? And another thing, you've posted information about their families.  What is wrong with you? 

Credit systems have pushed the ability to get credit down to a lot of people. While you may not have had an easily accessible 'bad credit' score back then, if you were to have behaved like that back in the day, you wouldn't have been granted it unless the bank owner owed your family a favor...

Normally deploy using svn, but if I'm editing a dev box, I have expandrive over ssh. Sublime text seems to like it fine as if it was local.

Since we've broken the $20 barrier, hetzner's auctions go for ~$25 usd if you're not a EU resident.

It's grey in that there's no specific form to fill for a SaaS and is a case by case basis. It's the sharing of responsibility that changes, and it is not a release of the SaaS from any compliance requirements. https://www.pcisecuritystandards.org/pdfs/PCI_DSS_v2_Cloud_Guidelines.pdf I hope...

Which is a wrong statement in and of itself. It's a basic error that anyone who has touched the PCI forms wouldn't make.

As the third party that people are relying on for SAQ-A, YOU need to be compliant.

"Over 50 PCI gateways are available for £10 per month via Spreedly, enabling you to accept credit cards without passing PCI compliance." :huh: - Please lookup SAQ-A.  That said, Loading Deck as a third-party that deals with and has access to cardholder data (even indirectly through Spreedly)...

Ossim

Most definately... :P

Thanks wlanboy.  I looked more closely into it as well.  Tier 2 servers are currently NOT audited.  Going by the T2 list, I've only come across one person I'd even remotely trust after tracerouting the IP and verifying whois, LinkedIn, etc. drmike's list (from the other thread) had one from a...

I just figured that server's been having problems and has since been delisted.  It might have come up long enough to resolve you a cloudflare ip in which case your browser's vhost header would just have confused Cloudflare's 404ish page.  Are you still getting this or has it passed already?

Second one, ns1.ca.dns isn't on the list anymore.  If I was wearing my tinfoil hat, I'd change it :)