Adam Siemiginowski
Occasional Visitor
Hello,
I am running an Asus RT-AC87U, and recently failed a PCI Assessment Security Scan (Credit Card Merchant) for the following logic:
"We have denied this dispute based upon manual investigation confirming that the encoded IP address and port of the information server is being disclosed.
As far as relevance to PCI-DSS, this finding would constitute a violation of Requirement 6 - Develop and Maintain Secure Systems and Applications, more specifically Requirement 6.2, as potentially sensitive data is disclosed to an outside attacker."
How would you advise I test / resolve this? We have our firewall turned on, and pass all points in the Routers Security Check.
Best,
Adam
I am running an Asus RT-AC87U, and recently failed a PCI Assessment Security Scan (Credit Card Merchant) for the following logic:
"We have denied this dispute based upon manual investigation confirming that the encoded IP address and port of the information server is being disclosed.
As far as relevance to PCI-DSS, this finding would constitute a violation of Requirement 6 - Develop and Maintain Secure Systems and Applications, more specifically Requirement 6.2, as potentially sensitive data is disclosed to an outside attacker."
How would you advise I test / resolve this? We have our firewall turned on, and pass all points in the Routers Security Check.
Best,
Adam