On 2017-03-17 03:10 PM, Doug McIntyre wrote:
The funniest PCI audit request I've come across is a customer had their PCI onsite auditor require the combination of their colo rack to be reset to 000 at the end of every visit. Not doing so would be a violation of their PCI security.
I suspect that they meant (and perhaps mis-stated) that the tumblers were to be set to zeros, not the the combination had to be reset.
Which reminds me of a security issue I came across recently although not tech related. I rented a condo in New Orleans for our vacation. The person renting to me gave me the code for a key safe like realtors use. When I got there I saw two of them. I looked at one and saw that it was already set for the code I was given but it wouldn't open. I then tried the other one and it worked.
The lesson - if you see two boxes like this make a note of the settings on them and try each on the other.
-- D'Arcy J.M. Cain System Administrator, Vex.Net http://www.Vex.Net/ IM:da...@vex.net VoIP: sip:da...@vex.net _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
