This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

SO MANY SECURITY ISSUES!! Sentora needs serious updates!
#2
RE: SO MANY SECURITY ISSUES!! Sentora needs serious updates!
(11-15-2018, 06:21 AM)aaronlroberts Wrote: So, I've just had the plugged pulled by Braintree because apparently my server configuration doesn't meet the PCI (Payment Card Industry) standards.

MOST of this is due to outdated services running Sentora.. For example, here's one of the reasons.. which I DO NOT understand a word of.




or what about this:

Here's another example:


The results of this security scan provided by "Security Metrics" totalled a 41 page PDF file with TOO many vulnerabilities so they blocked my ability to make any transactions using my website(s).

You guys at Sentora seem so caught up in this issue with Suhosin, to the point where you're happy enough to just let us sit on an old OS with multiple out of date issues with no updates or support for years... what's going on guys? Are you even working on getting this service up and running again or not?

I need an answer, I cannot waste time waiting for this damn suhosin to get compiled which is CLEARLY is not going to happen, just sounds like an excuse to me.

If a "developer" from here wants the PDF let me know.. but you guys need to get this together, otherwise it's just a insecure, messy platform.

Don't you think your post is a tad rude?

No one is making you use Sentora, and I'm pretty certain that no one has ever claimed it is PCI compliant (if they have I'd like to see it). Also, you do realise you are making use of something that is free?

"You guys at Sentora" only appears to be two people at the moment (I'm not one of them) and I think they both have far greater priorities than Sentora.

If you're post said something like "Please, can anyone help me make my Sentora installation PCI complaint", you'd probably get someone helping you. Hell, I might even have bothered to assist, and there are a couple of other active people on here who I am pretty sure would help you out.

But because of your tone I decided to spend my time on other posts. Well, apart from typing this message.

Good luck with your issue.

PS. That darn Suhosin... I know, spending all that time on something that helps keep your server secure. Fancy that! Maybe if you squeeze us hard enough we'll be able to just pop out an update and get on with it?
Reply
Thanks given by:


Messages In This Thread
RE: SO MANY SECURITY ISSUES!! Sentora needs serious updates! - by fearworks - 11-15-2018, 06:55 AM

Possibly Related Threads…
Thread Author Replies Views Last Post
Is Sentora dead? rajeevrrs 2 3 ,965 12-17-2022, 09:20 AM
Last Post: TGates
Sentora debug and error files johnnyp 0 1 ,588 10-27-2022, 06:16 PM
Last Post: johnnyp
Transfer Account to another Sentora BenI 1 3 ,330 07-21-2022, 07:19 PM
Last Post: Nigel

Forum Jump:


Users browsing this thread: 2 Guest(s)