 |
March 04, 2012, 11:08:44 PM
Last edit: March 04, 2012, 11:20:04 PM by Keyur @ Camp BX |
|
Hi all,
The PCI security scan on CampBX identified a Linux/SSL-related vulnerability on our new server earlier this week. This has caused us to lose the "PCI Compliant" status + logo temporarily.
After extensive testing our server administrators confirmed on Wednesday that this issue is a false positive. The bug had been patched a long time ago but the version number was not updated, which caused the security scanner to throw a false positive. Today McAfee's security team has verified and accepted our findings.
It will take a couple of days to get the PCI certified status back, but we have been fully compliant and secure all along.
Thank you,
Keyur
|
