Questions? Contact Us

 

Latest News

Featured News & Events

ZZ Servers sponsors fourth annual BSides Charleston conference

ZZ Servers sponsors fourth annual BSides Charleston conference
CHARLESTON, S.C. – Hacking web apps, exploiting mass emergency notification systems, software vulnerability and the state of information security today – sounds ominous, right? It isn't. Those are just some of the topics that were explored earlier this month during a gathering of information security professionals at the fourth annual BSides Charle...
Continue reading
1930 Hits
0 Comments

The Benefits Of Driving A 1964 Volkswagen Van

The Benefits Of Driving A 1964 Volkswagen Van
In my office I build and work with the latest technologies. My company, ZZ Servers, builds and maintains business infrastructures with security as the primary focus. We work to keep systems online while providing the most secure environment possible for businesses to conduct their work and for individuals to keep their data private. I firmly believ...
Continue reading
2899 Hits
0 Comments

Managing Partner, David M. Zendzian, to give presentation on SSL/TLS protocol, security and configuration issues

Managing Partner, David M. Zendzian, will be giving a short presentation on SSL/TLS protocol, security and configuration issues on Brighttalk tomorrow at 12 EST. SSL is a well designed protocol to ensure communications between two points are secured and that 3rd parties are not able to view the protected communications. As such many applications h...
Continue reading
1346 Hits
0 Comments

ZZ Servers Managing Partner to speak at #Shmoocon #Firetalks

ZZ Servers Managing Partner, David M. Zendzian (@dmz006) will be presenting How Do You Know Your Colo Isn’t “Inside” Your Cabinet, A Simple Alarm Using Teensy” which is based on a prior blog post. Shmoocon Firetalks are hosted by the NOVAHackers Who: ShmooCon/NovaInfosecPortal.com What: ShmooCon 2012 FireTalks When: 1/27 to 1/28/2011 Where: Wash...
Continue reading
1624 Hits
0 Comments

Server cabinet door alarm

The first step in securing servers is to ensure that they are physically as secure as possible and and then monitored for unauthorized access  Many times when setting up servers in a small office or co-location facility many people have their systems in a locking cabinet within a moderately secured physical building.  However a determined attacker ...
Continue reading
1908 Hits
0 Comments

Managing Partner speaking to College of Charleston Computer Science / ACM

David Zendzian, Managing Partner with ZZ Servers, will be speaking with Computer Science students from the College of Charleston today January 17, 2012 on general security best practices, OWASP and what future employers will expect their IT & Programming staff have knowledge of. David will be speaking at the weekly ACM meeting on the College o...
Continue reading
1390 Hits
0 Comments

OSSEC Daily Reports

As with any user of OSSEC, analyzing and working with the data is the key to successfully managing your environment.  From a prior post you can see we are monitoring events as they occur which is good for catching serious issues as they occur; however, it is not usually the best way to document what was identified and track what is being done to co...
Continue reading
1855 Hits
0 Comments

Vyatta border gateway passthrough filtering

It is generally a best practice to include multiple layers of security for any infrastructure.  Even if you are just routing packets, your routers are your outside perimeter and should include tools to restrict traffic not only to the device itself but also to the traffic that passes through. This doesn't mean the router should be your firewall, f...
Continue reading
1751 Hits
0 Comments

Zabbix & OSSEC: Open-Source compliance and security monitoring

Good security, not just compliance requirements, encourages IT & Security staff to spend time reviewing security events.  There are many tools available for many security components of your network; this article will focus on host security and host log monitoring using OSSEC and Zabbix. After having used many open and commercial  monitoring sy...
Continue reading
1671 Hits
0 Comments

PCI Compliant Hosting - Are you sure your host knows what PCI is and what they are selling?

I recently had a discussion with a potential customer on why they should work with ZZ Servers instead of one of the now hundreds of other hosting providers offering PCI "compliant" hosting services. After spending the last 5 years doing PCI Level 1 validations I have run into many areas that hosting providers just do not get PCI and what hosting pr...
Continue reading
1549 Hits
0 Comments

PCI Compliance and Receiving Credit Card Payments by Fax

The low cost of web and email based fax delivery services may seem like a good way to save your business money but not if you receive credit card payments by fax. This would fall under the Payment Card Industry standard section 4 that requires transmission of cardholder data across open-public networks to be encrypted and section 12 for contracts t...
Continue reading
1899 Hits
0 Comments

Health Insurance Portability & Accountability Act (HIPPA), PCI, SOX and Web Hosting

"HIPAA" is an acronym for the Health Insurance Portability & Accountability Act of 1996 (August 21), Public Law 104-191, which amended the Internal Revenue Service Code of 1986. Also known as the Kennedy-Kassebaum Act, the Act includes a section, Title II, entitled Administrative Simplification, requiring: Improved efficiency in health care d...
Continue reading
1448 Hits
0 Comments

Tag Cloud

compliance compliant hosting Windows hosting control panel kerio Disaster Recovery Plan anti virus PCI Service Provider Car Hacking passwords Home Depot Breach search log files HIPAA solutions video health care providers HIDS Information Technology cyber security windows 7 Business Planning support pci complliant hosting shared hosting smartphone VPS Servers HIPAA Solutions change PCI Compliance education mail server businesses business solitions dss backup solutions two factor authentication GDPR computing in the cloud intrusion detection network Xen Zendzian Domani Names management Las Vegas spam Charleston BSides DRP Interworx-CP InterWorx spf Internet phishing attacks physical security bash Ubuntu World Backup Day Positive Customer Impact arduino cloud infrastructure Server Mangement assesment cli Presentation IT services PCI DSS 3.2 IT Solutions members area HIPAA amazon ec2 Alarm phishing activesync computer security command line computer networks Control Panel business solutions PCI Solutions Health Insurance Portability employee training Internet infrastructure ICANN permissions TiaraCon DEF CON Compliance cyber monday credit card apache TLS Linux embedded healthcare solutions follow.The HIPAA Privacy Rule malicious software logical security Credit Card Security recovering data Medical Records safe computing cyber monitoring IT security IT security Continuous Monitoring sender policy Healthcare Records SSL Internet Corporation HIPPA business Payment Card Industry Accountability Act Cloud Computing ZZ Servers Co-Founder small business IT Services shared secure hosting data breach PCI spoofing password cyber protection Assigned Names Hackers caller-id OSSEC Geekend multi-factor authentication dsbl Online Business data privacy qsa eCommerce Solutions credit cards stolen information technology exchange vyatta router firewall filter security PCI HIPAA Announcement Business Solutions cell phone email cybersecurity blackberry shared folders Medical Solutions credit card payment Credit Cards CentOs trends teensy Email Firetalk lamp Debian social engineering infrastructure Health Care Cybersecurity vps Small Business PCI compliance motivation National Cyber Security Awareness Month physical shared server PCI Data Security Standards Web Hosting ZZ Servers Scalable Redundant Cloud Infrastructure black friday vulnerability scanning cyber liability insurance security circles Vulnerability Reports PCI Audit Cybersecurity Cybersecurity Business Solutions cyber David Zendzian INFOSEC iphone protect data QSA Security business community email accounts Sysadmin personal information IT solutions Shmoocon eCommerce data protection ipad PCI Hosting openssl Hosting cloud