This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM & Qualys Guard PCI-DSS scan ?

Hi guys,

I have a task of providing the PoC (proof of concept) on replacing TMG with Sophos UTM in a bank that is certified for PCI-DSS compliance.
UTM will be used only with Web Protection and Webserver Protection modules active.

Anyone implemented or using a UTM in that kind of environment ?

This thread was automatically locked due to age.

Parents

0 BAlfson over 10 years ago

Ian's first advice is best. A new installation should be designed and setup initially by someone with strong experience.

Vilic, Bruce and I have clients that undergo regular PCI scans. All I would have expected the presales team to say was, "There are a lot of UTMs passing PCI scans, so there's no problem." I would not expect any of them to hand out a best practice document, and I would expect any new installation to have 2048-bit certs, SSLv3 disabled, etc. The person that designs the configuration will do things like hide the User Portal behind a VPN, protect servers with the reverse proxy, etc.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 vilic over 10 years ago in reply to BAlfson

Ian's first advice is best. A new installation should be designed and setup initially by someone with strong experience.

That doesn't guarantee that the underlying engine will pass vulnerability tests.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 vilic over 10 years ago in reply to BAlfson

Ian's first advice is best. A new installation should be designed and setup initially by someone with strong experience.

That doesn't guarantee that the underlying engine will pass vulnerability tests.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data