PCI Compliance

From Hostek.com Wiki
Revision as of 22:17, 20 August 2012 by Briana (Talk | contribs)

Jump to: navigation, search


hostek.com

PCI compliance requires quarterly scans from a PCI compliance vendor. Hostek.com goes above and beyond this requirement by having regular scans from two different PCI compliance vendors. One vendor's scans are done quarterly. The other's scans are done nightly. This ensures that all potential PCI compliance issues are accurately identified and dealt with promptly.


Datacenter

The data center where the hostek.com equipment is housed maintains SSAE 16 Certification (audit report). This replaced the SAS 70 Type 2 Certification.

Common PCI Compliance Resolutions

Disable SSLv2

NOTE: Editing the Registry can be dangerous. Only do this if you know what you are doing. Otherwise, submit a support ticket and we can do this for you.

Follow these steps:

  1. Open Regedit (Start, Run, RegEdit)
  2. Browse to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0
    1. If there is a Server key (looks like a folder) then go to next main step
      1. Look for a Dword entry for Enabled and make sure it has a value of 0 (stop now... you are finished)
    2. If there is NOT a Server key, Right click on the SSL 2.0 key and click New > Key and create a new key named Server
  3. Right click on the Server key and choose Add > Dword and set the new value (first field)to Enabled and Value (2nd field) set to 0
Retrieved from "https://wiki.hostek.com/index.php?title=PCI_Compliance&oldid=571"