?
Solved

One of my Win2K server is being exploited

Posted on 2011-03-05
3
Medium Priority
?
350 Views
Last Modified: 2012-05-11
I have an old w2k server that I have custom code on, that will not work on the newer OS's so, the server can't be upgraded, and I have maybe 5 independent companies working on multiple servers including this one on various projects.

Here is the problem, after a ton of implementation costs to upgrading the entire environment to be PCI compliant, I now have someone rewriting the credit card numbers back into our database, and several other reoccurring PCI violation exploits. Its not a bug it is very intentional but, by whom.

I'm afraid I have ticked off one of the consultants and he/she is looking to turn us in, so we take the massive hit from storing cc # in an non PCI compliant environment.

I need to track all interaction changes in/on a windows server 2000 (standard edition) in regards to custom jsp pages. I haven't been able to find anything that works in W2k environment, as far as intrusion detection or even access tracking. "Spector Pro Server"  unfortunately only works in a windows server 2003 (and up) environment.

Any suggestions? I am recreating the entire functionality in a private cloud but, I am absolutely not ready to bring it live.

Thanks for the input.
0
Comment
Question by:tra-mis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 15

Accepted Solution

by:
Russell_Venable earned 2000 total points
ID: 35046668
0
 

Author Closing Comment

by:tra-mis
ID: 35046676
Thank you very much for you help!
0
 
LVL 15

Expert Comment

by:Russell_Venable
ID: 35048136
Np.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft has released remote PowerShell capabilities to all commercial Office 365 customers. So you can be controlled via PowerShell and not from the Office 365 admin center Download Windows PowerShell Module for Lync Online http://www.micros…
This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question