HI All
We are starting to cooperate with ext vendor, that is using Apache 2.4.29 We scanned his IP before we start using API in production, but scan fails, due to outdated version of Apache. Vendor guys, says he is maintaining this version of Apache and is patching it with OS patches , and does not have to update Apache version to the latest to cover security. Is this true? The PCI scan is failing, and I got this strange answer from him. Please advice!
Thanks a lot
Greg
Bookmarks