RE: PCI question - anonymous users from uploading files

Hi,

the best requirement that fits this is "Requirement 5: Use and regularly
update anti-virus software or programs", this will protect and prevent
the upload and downloading of files on systems that store, process and
transmit credit cards.

Abiola Abimbola
Information Security Analyst
BSkyB (England)
1111-5409

-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx]
On Behalf Of J. Lion
Sent: 15 January 2008 14:58
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: PCI question - anonymous users from uploading files

Is there a PCI requirement for preventing anonymous users from
uploading files (non PAN related files, like images or catalog data)?

-----------------------------------------
Information in this email including any attachments may be
privileged, confidential and is intended exclusively for the
addressee. The views expressed may not be official policy, but the
personal views of the originator. If you have received it in error,
please notify the sender by return e-mail and delete it from your
system. You should not reproduce, distribute, store, retransmit,
use or disclose its contents to anyone.

Please note we reserve the right to monitor all e-mail
communication through our internal and external networks.

SKY and the SKY marks are trade marks of British Sky Broadcasting
Group plc and are used under licence. British Sky Broadcasting
Limited (Registration No. 2906991), Sky Interactive Limited
(Registration No. 3554332), Sky-In-Home Service Limited
(Registration No. 2067075) and Sky Subscribers Services Limited
(Registration No. 2340150) are direct or indirect subsidiaries of
British Sky Broadcasting Group plc (Registration No. 2247735). All
of the companies mentioned in this paragraph are incorporated in
England and Wales and share the same registered office at Grant
Way, Isleworth, Middlesex TW7 5QD.


Relevant Pages

  • File Uploads taking *forever* - any way to improve this?
    ... Uploading a 5MB file in 6 minutes remoteley is a good ... >My WSS 2003 customers are having significant problems ... >1) Uploading files is incredibly slow in general. ... >immediately recall if there is a timeout setting in WSS ...
    (microsoft.public.sharepoint.windowsservices)
  • Raising soap exception in global.asax
    ... I'm developing an application that allow uploading files using webservices with WSE 2. ... Doing that way an html page is returned back to the client, so the soap client complains about receiving an text/html instead of text/xml with the appropriate SOAP payload. ... Reading the docs I saw that in this stage ASP.Net didn't know that we are dealing with a web services so it didn't return the soap fault payload. ...
    (microsoft.public.dotnet.framework.aspnet.webservices)
  • RE: RE: Firewalls and PCI
    ... Information Security Analyst ... SKY and the SKY marks are trade marks of British Sky Broadcasting ... British Sky Broadcasting Group plc. ... England and Wales and share the same registered office at Grant ...
    (Security-Basics)
  • Re: OT-- Low power, quiet least expensive firewall option
    ... True - this is a function of the server itself. ... web server, this means for example, not allowing relaying or uploading. ... uploads should be to a special uploads directory where users do NOT have ... preference for uploading files to the server is that this be done by a ...
    (comp.security.firewalls)
  • RE: queries regarding IPSec
    ... Subject: queries regarding IPSec ... SKY and the SKY marks are trade marks of British Sky Broadcasting ... British Sky Broadcasting Group plc. ...
    (Security-Basics)