scanalert.com

[TrueBlue]

Hello,

Why doesn't JH become a reseller for scanalert.com that way they could offer discounted scans to their resellers and or direct customers? PCI compliance is becoming an ever increasing concern. Especially JH servers security. A number of hosting companies are advertising that their servers are now PCI compliant. Not to mention that osCommerce is not PCI compliant listed.

Any ideas?

 

[Stephen]

TrueBlue,

We have been approached by scanalert and some others but at the time last year it wasn't really something that we wanted to swing with the market we target. In addition the seal scans are really soemthing I disagree with and quite bogus as they are not comprehensive at all, just do a google search for it and see how they actually make you a target

 

[TrueBlue]

Stephen,

I appreciate you think that it makes you a target, but without compliance you become a target of Visa. I need a solution to being able to provide a PCI compliant server and ecommerce catalog / cart to our customers. Any ideas?

 

[Stephen]

We regualrly get pci scans, and sometimes minor conditions or problems are identified, most of them are minor and we simply stop for instance, rsync. it all depends on the timing of the scan really, sometimes we may be running a service for a very short time and it gets "caught", its not really a big deal to be running rsync but sometimes they say it is

I don't know of "carts" etc that are or are not ready, I know that their are MANY that are not, but others that are.

 

[SubSpace]

We use ScanAlert at work and sometimes I happen to come across some of it's junk in the logfiles. Much like I expected, it's completely useless for anyone that has a remote idea of what they're doing :/