Results 1 to 4 of 4
  1. #1

    make the site: PCI compliance

    Hello,
    Our client has got a server that need to be PCI compliance. Price is $25. Please pm if you would like to take the job.

    This is the problem:
    # - 11
    System Responds to SYN+FIN
    TCP Packets
    This device responded to a TCP packet with both the SYN and FIN
    bits set. Such packets do not occur in typical network traffic, but can
    be used by attackers to bypass the security rules configured in nonstateful
    firewalls and establish connections with protected hosts.
    Ref: http://www.kb.cert.org/vuls/id/464113
    CVSSv2: AV:N/AC:L/Au:N/C:N/I:N/A:N (基本得分:0.00)

    Fix:
    Verify that stateful inspection has been implemented on the network
    to protect this host from out-of-state attacks. Confirm with your vendor
    that there are no known rule-bypass concerns with this device, and that
    the software revision is current. You may additionally wish to create
    specific filtering rules designed to drop or reject packets with certain
    combinations of bits set in initial synchronization packets such as SYN/
    FIN, and SYN/RST. Do not use routable IP space internally, except
    within your DMZ.

    Thanks
    Pang

  2. #2
    Join Date
    Jul 2008
    Location
    Brno, Czech Republic
    Posts
    19
    Are you kidding, right? That CERT alert is 7 years old, at least. Probably all distributions fixed that bug long time ago.
    www.non-a.net Linux/AIX System Management services

  3. #3
    If you still need help with this then please visit http://servermascot.com or drop in an email at support [at] servermascot [dot] com.

  4. #4
    Join Date
    Mar 2010
    Location
    India
    Posts
    224
    Are you still looking for some one to do this. Please reply back if you are interested.
    Techs4GNU :: Remote Tech Support & Server Management
    Per server support and Shared Team Specialists
    support[at]nixtree.com
    Cpanel Per Server Management Plan

Similar Threads

  1. PCI Compliance
    By TheChemist in forum Running a Web Hosting Business
    Replies: 3
    Last Post: 06-02-2010, 01:45 PM
  2. PCI Compliance
    By ColoJS in forum Colocation and Data Centers
    Replies: 15
    Last Post: 06-01-2010, 11:55 AM
  3. PCI Compliance
    By Reaperwebdesign in forum Web Hosting
    Replies: 34
    Last Post: 08-28-2009, 05:24 PM
  4. PCI Compliance
    By Janegirl in forum Ecommerce Hosting & Discussion
    Replies: 6
    Last Post: 11-26-2006, 02:17 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •