I am trying to make one of my client PCI complaint. When i ran the scan i got close to 16 medium level issues and the scan failed. I shall be starting to fix them one by one.
There is one POS behind the sonicwall TZ190 and a credit card machine attached to the POS.
First one recommends me to upgrade OpenSSL 0.9.8 SSL/TLS users (client and/or server) to 0.9.8za. OpenSSL 1.0.0 SSL/TLS users (client and/or server) should upgrade to 1.0.0m. OpenSSL 1.0.1 SSL/TLS users (client and/or server) should upgrade to 1.0.1h.
I am not sure if the above has to be done on the POS or it has something to do with the sonicwall.