Posts Categorized: PCI

Vyatta border gateway passthrough filtering

Vyatta routers bring high-quality enterprise routing in an open-source package. Like many projects it was originally designed for small office/home configurations but has grown to enterprise solutions. The current documentation on filtering between zones does not tie everything together well enough to understand zone filtering. This post will walk through a complex filter configuration for a vyatta running as a border gateway and not a small office/home gateway.

Anti Virus and PCI Compliance

Last year PCI DSS 1.2 was released changing the intent of the controls required for anti-virus software. In version 1.1 anti-virus software was only required for systems commonly affected by viruses and excluded UNIX based operating systems and mainframes. Version 1.2 now requires all operating system types commonly affected by malicious software be protected and… Read more »

Amazon confirms EC2/S3 does not meet PCI guidelines

If your business requires PCI compliant hosting services because you store, transmit or process cardholder data, hosting in the cloud may not be for you.  Most cloud providers do not have the controls or processes in place to protect sensitive cardholder data or the willingness to enter into required business arrangements with merchants.  Because of… Read more »