Thanks. This is helpful.. Sadly though PCI-DSS compliance scanners look
for the daemon version and when they see the vulnerable version it flags it
without further checks. It looks like there are many cve's that have not
been corrected... There are no change dates on anything listed either
which
On Sunday, 6 November 2016 09:27:18 CET John Gates wrote:
> I have a server that needs to stay PCIDSS compliant and it is complaining
> that apache 2.4.10 is running... When is an update going to be
> available... Do I have to compile my own Apache version? Seems odd that
> stability is favored
I have a server that needs to stay PCIDSS compliant and it is complaining
that apache 2.4.10 is running... When is an update going to be
available... Do I have to compile my own Apache version? Seems odd that
stability is favored over security... Please advise.
Best Regards,
John Gates, CISSP
On Saturday, 5 November 2016 18:04:35 CET Hans van Kranenburg wrote:
> > We support Berkley DB (AuthDBMType db) in apr-util. Are there any
> > advantages of gdbm over db?
>
> Heh. I interpret this question as a suggestive one, suggesting there are
> none.
I really did not know. Thanks for the res
4 matches
Mail list logo
