|
This online help file is for EFT Server version 6.2.x. For other versions of EFT Server, please refer to http://help.globalscape.com/help/index.html. (If the Index and Contents are hidden, click Show Contents pane in the top left corner of this topic.) |
From the PCI DSS:
Malicious software, commonly referred to as "malware"—including viruses, worms, and Trojans—enters the network during many business approved activities including employees’ e-mail and use of the Internet, mobile computers, and storage devices, resulting in the exploitation of system vulnerabilities. Anti-virus software must be used on all systems commonly affected by malware to protect systems from current and evolving malicious software threats.
EFT Server does not specifically provide antivirus functions; you should continue to rely on your current antivirus implementation. You can also configure EFT Server to block specific files or file types from being transferred.
PCI DSS Requirement |
How Requirement is Addressed with EFT Server |
5.1 Deploy anti-virus software on all systems commonly affected by viruses (particularly PCs and servers) |
Data uploaded to EFT Server can (and should) be scanned for viruses independently of EFT Server; however, EFT Server can block the upload or download of certain file types based on their extensions. |
5.2 Ensure that all anti-virus mechanisms are current, actively running, and capable of generating audit logs. |
External to EFT Server |