Questions? Contact Us

 

Latest News

Featured News & Events

ZZ Servers sponsors fourth annual BSides Charleston conference

ZZ Servers sponsors fourth annual BSides Charleston conference
CHARLESTON, S.C. – Hacking web apps, exploiting mass emergency notification systems, software vulnerability and the state of information security today – sounds ominous, right? It isn't. Those are just some of the topics that were explored earlier this month during a gathering of information security professionals at the fourth annual BSides Charle...
Continue reading
1904 Hits
0 Comments

The Benefits Of Driving A 1964 Volkswagen Van

The Benefits Of Driving A 1964 Volkswagen Van
In my office I build and work with the latest technologies. My company, ZZ Servers, builds and maintains business infrastructures with security as the primary focus. We work to keep systems online while providing the most secure environment possible for businesses to conduct their work and for individuals to keep their data private. I firmly believ...
Continue reading
2858 Hits
0 Comments

Managing Partner, David M. Zendzian, to give presentation on SSL/TLS protocol, security and configuration issues

Managing Partner, David M. Zendzian, will be giving a short presentation on SSL/TLS protocol, security and configuration issues on Brighttalk tomorrow at 12 EST. SSL is a well designed protocol to ensure communications between two points are secured and that 3rd parties are not able to view the protected communications. As such many applications h...
Continue reading
1323 Hits
0 Comments

ZZ Servers Managing Partner to speak at #Shmoocon #Firetalks

ZZ Servers Managing Partner, David M. Zendzian (@dmz006) will be presenting How Do You Know Your Colo Isn’t “Inside” Your Cabinet, A Simple Alarm Using Teensy” which is based on a prior blog post. Shmoocon Firetalks are hosted by the NOVAHackers Who: ShmooCon/NovaInfosecPortal.com What: ShmooCon 2012 FireTalks When: 1/27 to 1/28/2011 Where: Wash...
Continue reading
1594 Hits
0 Comments

Server cabinet door alarm

The first step in securing servers is to ensure that they are physically as secure as possible and and then monitored for unauthorized access  Many times when setting up servers in a small office or co-location facility many people have their systems in a locking cabinet within a moderately secured physical building.  However a determined attacker ...
Continue reading
1850 Hits
0 Comments

Managing Partner speaking to College of Charleston Computer Science / ACM

David Zendzian, Managing Partner with ZZ Servers, will be speaking with Computer Science students from the College of Charleston today January 17, 2012 on general security best practices, OWASP and what future employers will expect their IT & Programming staff have knowledge of. David will be speaking at the weekly ACM meeting on the College o...
Continue reading
1350 Hits
0 Comments

OSSEC Daily Reports

As with any user of OSSEC, analyzing and working with the data is the key to successfully managing your environment.  From a prior post you can see we are monitoring events as they occur which is good for catching serious issues as they occur; however, it is not usually the best way to document what was identified and track what is being done to co...
Continue reading
1783 Hits
0 Comments

Vyatta border gateway passthrough filtering

It is generally a best practice to include multiple layers of security for any infrastructure.  Even if you are just routing packets, your routers are your outside perimeter and should include tools to restrict traffic not only to the device itself but also to the traffic that passes through. This doesn't mean the router should be your firewall, f...
Continue reading
1663 Hits
0 Comments

Zabbix & OSSEC: Open-Source compliance and security monitoring

Good security, not just compliance requirements, encourages IT & Security staff to spend time reviewing security events.  There are many tools available for many security components of your network; this article will focus on host security and host log monitoring using OSSEC and Zabbix. After having used many open and commercial  monitoring sy...
Continue reading
1575 Hits
0 Comments

PCI Compliant Hosting - Are you sure your host knows what PCI is and what they are selling?

I recently had a discussion with a potential customer on why they should work with ZZ Servers instead of one of the now hundreds of other hosting providers offering PCI "compliant" hosting services. After spending the last 5 years doing PCI Level 1 validations I have run into many areas that hosting providers just do not get PCI and what hosting pr...
Continue reading
1509 Hits
0 Comments

PCI Compliance and Receiving Credit Card Payments by Fax

The low cost of web and email based fax delivery services may seem like a good way to save your business money but not if you receive credit card payments by fax. This would fall under the Payment Card Industry standard section 4 that requires transmission of cardholder data across open-public networks to be encrypted and section 12 for contracts t...
Continue reading
1697 Hits
0 Comments

Health Insurance Portability & Accountability Act (HIPPA), PCI, SOX and Web Hosting

"HIPAA" is an acronym for the Health Insurance Portability & Accountability Act of 1996 (August 21), Public Law 104-191, which amended the Internal Revenue Service Code of 1986. Also known as the Kennedy-Kassebaum Act, the Act includes a section, Title II, entitled Administrative Simplification, requiring: Improved efficiency in health care d...
Continue reading
1397 Hits
0 Comments

Tag Cloud

VPS Servers Alarm mail server video computing in the cloud Compliance openssl Domani Names Geekend windows 7 Xen credit card payment Health Care Cybersecurity malicious software data breach vyatta router firewall filter security PCI HIPAA Business Planning two factor authentication Ubuntu healthcare solutions PCI compliance ipad Shmoocon Car Hacking sender policy command line cybersecurity IT Solutions Cybersecurity qsa iphone phishing amazon ec2 Hosting anti virus personal information pci complliant hosting Windows Sysadmin exchange Firetalk network Control Panel compliance Security Accountability Act dss Hackers eCommerce Scalable Redundant Cloud Infrastructure kerio lamp Healthcare Records credit card multi-factor authentication IT Services data protection spoofing ZZ Servers Co-Founder PCI Solutions HIPPA logical security David Zendzian PCI DSS 3.2 HIPAA solutions small business Positive Customer Impact Internet infrastructure cyber liability insurance Announcement Cybersecurity Business Solutions cyber security management HIPAA Solutions Internet Corporation IT DEF CON Debian GDPR password dsbl TiaraCon black friday arduino spam Continuous Monitoring infrastructure permissions business community Payment Card Industry health care providers OSSEC Reports Zendzian cyber monitoring DRP security Charleston business data privacy Server Mangement recovering data physical security blackberry vps shared server business solitions businesses employee training smartphone Email intrusion detection cli Linux Home Depot Breach log files National Cyber Security Awareness Month cyber protection spf phishing attacks eCommerce Solutions cloud infrastructure teensy cell phone email Cloud Computing computer security Las Vegas SSL Web Hosting IT services InterWorx PCI Service Provider Medical Records hosting control panel credit cards stolen cloud CentOs physical bash TLS Information Technology shared folders Health Insurance Portability BSides caller-id social engineering IT security follow.The HIPAA Privacy Rule IT solutions World Backup Day Online Business support Vulnerability Business Solutions Assigned Names cyber monday ZZ Servers backup solutions shared secure hosting Interworx-CP HIPAA PCI Compliance information technology assesment embedded compliant hosting search protect data education apache Medical Solutions Small Business members area computer networks Credit Card Security PCI shared hosting trends Credit Cards safe computing INFOSEC Presentation vulnerability scanning cyber QSA Disaster Recovery Plan motivation passwords email accounts PCI Data Security Standards activesync PCI Hosting PCI Audit change HIDS business solutions Internet security circles ICANN