Skip to main content

💼 2.2.5 If any insecure services, protocols, or daemons are present, business justification is documented.

ID: /frameworks/pci-dss-v4.0/02/02/05

Description

Additional security features are documented and implemented that reduce the risk of using insecure services, protocols, or daemons.

Similar

Sections
- /frameworks/pci-dss-v3.2.1/02/02/03
- /frameworks/pci-dss-v4.0.1/02/02/05
Internal
- ID: dec-c-ffc9e5fd

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v3.2.1 → 💼 2.2.3 Implement additional security features for any required services, protocols, or daemons that are considered to be insecure.		3	3		no data
💼 PCI DSS v4.0.1 → 💼 2.2.5 If any insecure services, protocols, or daemons are present, business justification is documented.			3		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v3.2.1 → 💼 2.2.3 Implement additional security features for any required services, protocols, or daemons that are considered to be insecure.		3	3		no data
💼 PCI DSS v4.0.1 → 💼 2.2.5 If any insecure services, protocols, or daemons are present, business justification is documented.			3		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (3)

Policy	Logic Count	Flags	Compliance
🛡️ AWS EC2 Security Group allows unrestricted FTP traffic🟢	1	🟢 x6	no data
🛡️ AWS EC2 Security Group allows unrestricted NetBIOS traffic🟢	1	🟢 x6	no data
🛡️ AWS EC2 Security Group allows unrestricted RPC traffic🟢	1	🟢 x6	no data

Description
Similar
Similar Sections (Take Policies From)
Similar Sections (Give Policies To)
Sub Sections
Policies (3)