Bitcoin Forum
June 21, 2024, 11:48:10 PM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Economy > Trading Discussion > CampBX Security Bug Update
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: CampBX Security Bug Update  (Read 967 times)
Keyur @ Camp BX (OP)
Sr. Member
****
Offline Offline

Activity: 299
Merit: 250



View Profile WWW
March 04, 2012, 11:08:44 PM
Last edit: March 04, 2012, 11:20:04 PM by Keyur @ Camp BX
 #1
Hi all,
       The PCI security scan on CampBX identified a Linux/SSL-related vulnerability on our new server earlier this week.  This has caused us to lose the "PCI Compliant" status + logo temporarily.

After extensive testing our server administrators confirmed on Wednesday that this issue is a false positive.  The bug had been patched a long time ago but the version number was not updated, which caused the security scanner to throw a false positive.  Today McAfee's security team has verified and accepted our findings.  

It will take a couple of days to get the PCI certified status back, but we have been fully compliant and secure all along.

Thank you,
      Keyur
Please stay tuned to our news and announcements feeds at:
Twitter: https://twitter.com/CampBX
Facebook: https://facebook.com/CampBX
epetroel
Sr. Member
****
Offline Offline

Activity: 431
Merit: 251


View Profile
March 04, 2012, 11:49:24 PM
 #2
Ha, nice.  Having this same issue right now with an e-comm site that I manage.  As you mentioned, seems red hat backports security fixes but doesn't change the version number.

Would think that with red hat being as popular as it is that McCaffee would handle this in their scanner, but no.
Pages: [1]
  Print  
Bitcoin Forum > Economy > Trading Discussion > CampBX Security Bug Update
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!