PCI Requirement 2.2.2 – Enable Only Necessary Services, Protocols and Daemons
If It's Not Required, Get Rid of It We believe that the PCI DSS, or really any information security framework, boils down to a…
If It's Not Required, Get Rid of It We believe that the PCI DSS, or really any information security framework, boils down to a…
Finding Cross-Over Between Servers PCI Requirement 2.2.1 is another requirement focusing on hardening standards. PCI Requirement 2.2.1 states, “Implement only one primary function per…
Developing Configuration Standards After Industry Best Practices System configuration standards are the proper configuration of system components like networks, servers, and applications. PCI Requirement…
Hardening Your Wireless Network Similar to the parent requirement, PCI Requirement 2.1, PCI Requirement 2.1.1 focuses on changing vendor-supplied defaults. PCI Requirement 2.1.1, though,…
Why should you change vendor-supplied defaults? Vendor-supplied accounts and passwords pose a serious threat to your organization's security. Although defaults might make installation or…