Re: X-Cart and PCI-DSS / PA-DSS compliance
Quote:
|
Originally Posted by BritSteve
How can x-payments be isolated from x-cart and still be safe? If someone hacks into the webserver through an exploit in any application running on the server, then they can potentially change x-payments to do anything they want. This could include capturing the payment details and sending them somewhere else?
It is not impossible for some of these exploits to give root access.
Steve
|
That's what I thought, but I'm no expert. I would have thought that xcart would be made compliant, not add a seperate module, that cost more money to run.
__________________
Xcart 5.1.6 Building New Store
Xcart4.6.4 Gold Plus
Xcart 4.6.4 Platinum
Smart Template,
Mail Chimp Upgrade
Checkout One (One Page Checkout)
Checkout One X-Payments Connector
Checkout One Deluxe Tools
Call For Price
On Sale Module
Buy Together Module
MAP Price MOD
|