solarstriker Posted August 19, 2010 Posted August 19, 2010 Hello I am in the process of implementing a new OSCommerce solution. Security is always an important one to monitor. I have done a free scan of a PCI security scan and it showed some issues with php files and a weak SSL. I am wondering how effective these scans are and if they are of value on an ongoing basis. The SSL was using Rapid SSL. Does anyone have any thoughts or experience re the value of the PCI scan services? Thanking you in advance.
♥mdtaylorlrim Posted August 19, 2010 Posted August 19, 2010 Hello I am in the process of implementing a new OSCommerce solution. Security is always an important one to monitor. I have done a free scan of a PCI security scan and it showed some issues with php files and a weak SSL. I am wondering how effective these scans are and if they are of value on an ongoing basis. The SSL was using Rapid SSL. Does anyone have any thoughts or experience re the value of the PCI scan services? Thanking you in advance. PCI Scans are worth every penny, if using the one required by your merchant account. BUT, they do NOT find all software vulnerabilities specific to osCommerce. See the Security forum for a list of many other security features you MUST add to your osCommerce installation for it to be secure. Even then you may be the one where someone finds a new vulnerability.... Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...?
Recommended Posts
Archived
This topic is now archived and is closed to further replies.