Re: Credit card arrangement

This WebDNA talk-list message is from

2005

It keeps the original formatting. numero = 63526
interpreted = N
texte = Bob Minor wrote:> They wanna audit it as well. Use to be they controlled the software > etc. Now there are so many hands in the cookie jar, I have to store it, > my customer has to store it. We have had to go through numerous network > audits its not funny.> > We had a special device that cloaked our network, no one could tell if > a machine had open ports or not. We watched and maintained honeypots > etc. Well the credit card companies came in and said hey all your stuff > is vulnerable to attack. We no its not, we just dont' let the outside > world know what we are doing period. They made us put in a visible and > therefore more vulnerable firewall so that they could see what we were > doing to protect our network and the hosting/ colocation customers.> > I think what they are doing is ultimately the right thing. I would much > prefer not to hold the CC at all or if I do on a machine that is > firewalled from the internet. I just don't want some wanker coming in > making us look bad by stealing all our credit card data. You can only > imagine the lawsuits that could result if you didn't take reasonable > efforts to secure the data.> > Now don't even get me started on the HIPAA crap!Who is "they"?Donovan--  =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o DONOVAN D. BROOKE EUCA Design Center <- Web Development (specializing in eCommerce),-> <- Custom Paint, Labels, and Specialty Signage. -> <- Home and Business Embellishment/Fabrication, -> <- Glass Blowing, and Art Glass -> PH/FAX:> 1 (608) 835-2476 Web:> http://www.egg.bz | http://www.euca.us =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

Re: Credit card arrangement ( Scott Szretter 2005) Re: Credit card arrangement ( Patrick McCormick 2005) Re: Credit card arrangement ( Patrick McCormick 2005) Re: Credit card arrangement ( "Bess Ho" 2005) Re: Credit card arrangement ( Bob Minor 2005) Re: Credit card arrangement ( Dale-List 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Re: Credit card arrangement ( Bob Minor 2005) Re: Credit card arrangement ( "Bess Ho" 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Re: Credit card arrangement ( "Bess Ho" 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Re: Credit card arrangement ( "Bess Ho" 2005) Re: Credit card arrangement ( Patrick McCormick 2005) Re: Credit card arrangement ( Marc Thompson 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Re: Credit card arrangement ( Bob Minor 2005) Re: Credit card arrangement ( Marc Thompson 2005) Re: Credit card arrangement ( Donovan Brooke 2005) Credit card arrangement ( Patrick McCormick 2005)

Bob Minor wrote:> They wanna audit it as well. Use to be they controlled the software > etc. Now there are so many hands in the cookie jar, I have to store it, > my customer has to store it. We have had to go through numerous network > audits its not funny.> > We had a special device that cloaked our network, no one could tell if > a machine had open ports or not. We watched and maintained honeypots > etc. Well the credit card companies came in and said hey all your stuff > is vulnerable to attack. We no its not, we just dont' let the outside > world know what we are doing period. They made us put in a visible and > therefore more vulnerable firewall so that they could see what we were > doing to protect our network and the hosting/ colocation customers.> > I think what they are doing is ultimately the right thing. I would much > prefer not to hold the CC at all or if I do on a machine that is > firewalled from the internet. I just don't want some wanker coming in > making us look bad by stealing all our credit card data. You can only > imagine the lawsuits that could result if you didn't take reasonable > efforts to secure the data.> > Now don't even get me started on the HIPAA crap!Who is "they"?Donovan--  =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o DONOVAN D. BROOKE EUCA Design Center <- Web Development (specializing in eCommerce),-> <- Custom Paint, Labels, and Specialty Signage. -> <- Home and Business Embellishment/Fabrication, -> <- Glass Blowing, and Art Glass -> PH/FAX:> 1 (608) 835-2476 Web:> http://www.egg.bz | http://www.euca.us =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Donovan Brooke

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

[WebDNA] Downloadable file protection (2011) [Webcat 2]Next (1997) show if date < expiry date (2002) problem: mail changed (1997) Installing Web DNA 5.1 on a MAC (2004) Separate SSL Server (1997) Change to UPPERCASE (2000) Credit Card Number checking (1997) Getting Values into Cart the easy way?* (1998) lineitems context in sendmail context (1998) OT: test ... (2004) [OT] Colored source code in IE? (2007) Multi-User Security on *nix using mod_rewrite (2002) [ModDate] & [ModTime] ? (1997) Request Time Out (1997) Emailer problem (2000) whole word search bringing irrelevant results.. (2000) What if SSL server down? MAC (1997) Multiple prices (1997) [WebDNA] Archives (2009)