On Mon, Mar 01, 2010 at 05:34:55PM -0600, Joshua Nichols spake thusly: > Isn't the requirement that you "use and regularly update anti-virus > software"?
Not even that, as I just pointed out in my previous mail. > biggest problem with the PCI spec is how much cheaper it is to pass > the tests than to meet 100% of the requirements-as-written. This is a problem with people more than it is with PCI-DSS. Overall, it is a very well thought out document which never claims to be more than a good starting point. Most of the concerns about it come from misunderstandings. Those trying to meet the letter of the spec and not the spirit cannot be helped by any mere document. -- Tracy Reed http://tracyreed.org
pgp2RtHpK3oLR.pgp
Description: PGP signature
_______________________________________________ Tech mailing list [email protected] http://lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
