Requirement 5: Use and Regularly Update Anti-Virus Software

From the PCI DSS:

Malicious software, commonly referred to as "malware"—including viruses, worms, and Trojans—enters the network during many business approved activities including employees’ e-mail and use of the Internet, mobile computers, and storage devices, resulting in the exploitation of system vulnerabilities. Anti-virus software must be used on all systems commonly affected by malware to protect systems from current and evolving malicious software threats.

EFT Server does not specifically provide antivirus functions; you should continue to rely on your current antivirus implementation. You can also configure EFT Server to block specific files or file types from being transferred.

PCI DSS Requirement	How Requirement is Addressed with EFT Server
5.1 Deploy anti-virus software on all systems commonly affected by viruses (particularly PCs and servers)	Data uploaded to EFT Server can (and should) be scanned for viruses independently of EFT Server; however, EFT Server can block the upload or download of certain file types based on their extensions.
5.2 Ensure that all anti-virus mechanisms are current, actively running, and capable of generating audit logs.	External to EFT Server

Did this topic solve your problem/answer your question?

- For the most up-to-date information regarding EFT Server and its modules;

- To view version history, updates, and activation instructions;

- To download a PDF of this user guide;

- And to search the Knowledge Base and User Forum,

Visit the GlobalSCAPE Support Center, http://www.globalscape.com/support .

Refer to Copyright Information for copyright information.

Last modified: October 14, 2009