Bitcoin Forum
December 03, 2016, 12:27:42 AM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: CampBX Security Bug Update  (Read 799 times)
Keyur @ Camp BX
Sr. Member
****
Offline Offline

Activity: 300



View Profile WWW
March 04, 2012, 11:08:44 PM
 #1

Hi all,
       The PCI security scan on CampBX identified a Linux/SSL-related vulnerability on our new server earlier this week.  This has caused us to lose the "PCI Compliant" status + logo temporarily.

After extensive testing our server administrators confirmed on Wednesday that this issue is a false positive.  The bug had been patched a long time ago but the version number was not updated, which caused the security scanner to throw a false positive.  Today McAfee's security team has verified and accepted our findings.  

It will take a couple of days to get the PCI certified status back, but we have been fully compliant and secure all along.

Thank you,
      Keyur


Please stay tuned to our news and announcements feeds at:
Twitter: https://twitter.com/CampBX
Facebook: https://facebook.com/CampBX
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1480724862
Hero Member
*
Offline Offline

Posts: 1480724862

View Profile Personal Message (Offline)

Ignore
1480724862
Reply with quote  #2

1480724862
Report to moderator
1480724862
Hero Member
*
Offline Offline

Posts: 1480724862

View Profile Personal Message (Offline)

Ignore
1480724862
Reply with quote  #2

1480724862
Report to moderator
epetroel
Sr. Member
****
Offline Offline

Activity: 428


View Profile
March 04, 2012, 11:49:24 PM
 #2

Ha, nice.  Having this same issue right now with an e-comm site that I manage.  As you mentioned, seems red hat backports security fixes but doesn't change the version number.

Would think that with red hat being as popular as it is that McCaffee would handle this in their scanner, but no.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!