[ZendTo] Re: Zendto Downloads
Brad Beckenhauer
bbecken at aafp.org
Thu Aug 13 04:15:24 BST 2015
HI Kris,
I've not looked at the Remi repos. I'll check into that. thanks for the tip.
Regarding the PCI, we're in the early stages of the PCI compliance and until the scope is sufficiently narrowed, I've been told everything is "in scope". Hence I also have to scan the zendto system until the scope is narrowed. I've forwarded the exact issues offline to Julian for his review.
The Zendto system has been a great asset for us and I'm happy to contribute the findings for review.
-Brad
>>> Kris Lou <klou at themusiclink.net> 08/12/15 2:49 PM >>>
Easiest way is to lookup and hook into the Remi repos for the more updated PHP (and others). http://blog.remirepo.net/pages/English-site-introduction
More difficult is to use the CentOS Software Collections for PHP 5.4. http://wiki.centos.org/AdditionalResources/Repositories/SCL
Regarding PCI, is this machine part of the scope?
-Kris
Kris Lou
klou at themusiclink.net
On Wed, Aug 12, 2015 at 11:56 AM, Brad Beckenhauer <bbecken at aafp.org> wrote:
Running zendto-4.12-5.noarch on CentOS 6.7 Final.
I was looking at the http://zend.to/downloads.php webpage.
The status for the CentOS virtual machine is "Not yet updated".
Is there a timeline on when the new version will be released and will it be CentOS version 6 or 7.
Any migration process to move stats and data to the new system?
I ran a PCI DSS compliance check against one of my test systems and they:
a) want php version 5.3.22 or 5.4.13
b) recommend setting "expose_php = Off" in php.ini
Does anyone have a script/process to upgrade php on CentOS 6.7 they would care to share?
Julian, I'll send you the other vulnerabilities discovered by the PCI scan off line.
thanks
Brad
_______________________________________________
ZendTo mailing list
ZendTo at zend.to
http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20150812/deaec0ad/attachment.html
More information about the ZendTo
mailing list