tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Rees" <dree...@gmail.com>
Subject Re: mod_jk or mod_proxy_ajp - encryption benefits?
Date Mon, 03 Mar 2008 07:01:58 GMT
On Sun, Mar 2, 2008 at 6:42 PM, Martin Gainty <mgainty@hotmail.com> wrote:
>  PCI-DSS calls for encryption on all channels where payment information will
>  be transmitted is the configuration described here non PCI-DSS compliant?

No, PCI-DSS calls for encryption of card data across open, public
networks. If your connection between Apache and Tomcat is open and
public (not common, typically it is on a secured LAN, then yes, your
typical mod_jk or mod_proxy_ajb would not be sufficient.

-Dave

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message