Difference between revisions of "PCI Compliance"
From Hostek.com Wiki
(→Datacenter) |
|||
Line 1: | Line 1: | ||
+ | __FORCETOC__ | ||
+ | |||
==hostek.com== | ==hostek.com== | ||
Line 8: | Line 10: | ||
The data center where the hostek.com equipment is housed maintains SSAE 16 Certification ([http://hostek.com/forms/SSAE-16_Letter_of_Cert.pdf audit report]). This replaced the SAS 70 Type 2 Certification. | The data center where the hostek.com equipment is housed maintains SSAE 16 Certification ([http://hostek.com/forms/SSAE-16_Letter_of_Cert.pdf audit report]). This replaced the SAS 70 Type 2 Certification. | ||
+ | ==Common PCI Compliance Resolutions== | ||
+ | ===Disable SSLv2=== | ||
+ | '''NOTE: Editing the Registry can be dangerous. Only do this if you know what you are doing. Otherwise, submit a support ticket and we can do this for you.''' | ||
+ | |||
+ | Follow these steps: | ||
+ | #Open '''Regedit''' (Start, Run, RegEdit) | ||
+ | #Browse to '''HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0''' | ||
+ | ##If there is a Server key (looks like a folder) then go to next main step | ||
+ | ###Look for a Dword entry for Enabled and make sure it has a value of 0 (stop now... you are finished) | ||
+ | ##If there is NOT a Server key, Right click on the SSL 2.0 key and click New > Key and create a new key named Server | ||
+ | #Right click on the Server key and choose Add > Dword and set the new value (first field)to Enabled and Value (2nd field) set to 0 | ||
[[Category:Infrastructure]] | [[Category:Infrastructure]] |
Revision as of 22:17, 20 August 2012
hostek.com
PCI compliance requires quarterly scans from a PCI compliance vendor. Hostek.com goes above and beyond this requirement by having regular scans from two different PCI compliance vendors. One vendor's scans are done quarterly. The other's scans are done nightly. This ensures that all potential PCI compliance issues are accurately identified and dealt with promptly.
Datacenter
The data center where the hostek.com equipment is housed maintains SSAE 16 Certification (audit report). This replaced the SAS 70 Type 2 Certification.
Common PCI Compliance Resolutions
Disable SSLv2
NOTE: Editing the Registry can be dangerous. Only do this if you know what you are doing. Otherwise, submit a support ticket and we can do this for you.
Follow these steps:
- Open Regedit (Start, Run, RegEdit)
- Browse to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0
- If there is a Server key (looks like a folder) then go to next main step
- Look for a Dword entry for Enabled and make sure it has a value of 0 (stop now... you are finished)
- If there is NOT a Server key, Right click on the SSL 2.0 key and click New > Key and create a new key named Server
- If there is a Server key (looks like a folder) then go to next main step
- Right click on the Server key and choose Add > Dword and set the new value (first field)to Enabled and Value (2nd field) set to 0