Rochen Host Customer Forums  

Go Back   Rochen Customer Forums > Public Forums > Pre-Sales Questions

 
 
Thread Tools Display Modes
Old 18th May 2009, 10:48 PM   #1
mauijim
Rochen Community Member
 
Join Date: May 2009
Posts: 88
PCI compliance & SSL

Is Rochen PCI DSS compliant?
Can Rochen provide SSL certs?
mauijim is offline  
Old 18th May 2009, 10:50 PM   #2
Chris
Rochen Staff
 
Chris's Avatar
 
Join Date: Oct 2002
Location: United Kingdom
Posts: 12,558
Due to the requirements set out by PCI no shared hosting provider can be compliant. With our Managed Virtual Server (MVS) solution though we can work with you to achieve PCI compliance and have already done this for many MVS clients.

We don't offer SSL certificates but if you purchase one from an SSL vendor we would be happy to install it for you free of charge. A dedicated IP address would be required though which is charged at $5.50/month. With the reseller plans and MVS the primary domain already comes with a dedicated IP allocated as part of the plan.

Please let us know if we can be of any further help
__________________
Chris Adams Rochen Ltd. chris@rochen.com
- Reseller Web Hosting Plans & Multiple Domain Solutions
- www.rochen.com

Follow Rochen on Twitter @rochenhost
Chris is offline  
Old 18th May 2009, 10:56 PM   #3
mauijim
Rochen Community Member
 
Join Date: May 2009
Posts: 88
Quote:
Originally Posted by Chris View Post
A dedicated IP address would be required though
Is this always the case?
mauijim is offline  
Old 18th May 2009, 10:57 PM   #4
Chris
Rochen Staff
 
Chris's Avatar
 
Join Date: Oct 2002
Location: United Kingdom
Posts: 12,558
Yes, if you want to run your own SSL certificate then a dedicated IP address for the account is always required.
__________________
Chris Adams Rochen Ltd. chris@rochen.com
- Reseller Web Hosting Plans & Multiple Domain Solutions
- www.rochen.com

Follow Rochen on Twitter @rochenhost
Chris is offline  
Old 18th May 2009, 11:00 PM   #5
mauijim
Rochen Community Member
 
Join Date: May 2009
Posts: 88
Thanks a bunch for your quick replies Chris.
Cheers
mauijim is offline  
Old 18th May 2009, 11:01 PM   #6
Chris
Rochen Staff
 
Chris's Avatar
 
Join Date: Oct 2002
Location: United Kingdom
Posts: 12,558
If you are looking for a lower cost way to take payments you may wish to look at Google Checkout or PayPal. Both of these systems handle the payments for you on their servers so you don't require PCI compliance or SSL certificates on your side.
__________________
Chris Adams Rochen Ltd. chris@rochen.com
- Reseller Web Hosting Plans & Multiple Domain Solutions
- www.rochen.com

Follow Rochen on Twitter @rochenhost
Chris is offline  
Old 18th May 2009, 11:06 PM   #7
mauijim
Rochen Community Member
 
Join Date: May 2009
Posts: 88
Forgive my ignorance, but does that mean the compliance comes into play with taking the payment?
Then wouldn't the e-commerce modules in Joomla, virtuemart, have the ability for compliance as well?
mauijim is offline  
Old 18th May 2009, 11:07 PM   #8
Chris
Rochen Staff
 
Chris's Avatar
 
Join Date: Oct 2002
Location: United Kingdom
Posts: 12,558
You only have to be PCI compliant if you are collecting credit card information on your website. If you are using a service like PayPal though the user is entering their card information on the PayPal website and not your website, so you don't need to be PCI compliant.
__________________
Chris Adams Rochen Ltd. chris@rochen.com
- Reseller Web Hosting Plans & Multiple Domain Solutions
- www.rochen.com

Follow Rochen on Twitter @rochenhost
Chris is offline  
Old 18th May 2009, 11:16 PM   #9
mauijim
Rochen Community Member
 
Join Date: May 2009
Posts: 88
OK. I understand.
I'll have to re-evaluate and see about our site's current compliance, and then look at the solutions you suggested.
Thanks again Chris.
mauijim is offline  
Old 24th November 2010, 09:50 PM   #10
tommyd
Rochen Community Guest
 
Join Date: Apr 2010
Posts: 6
Hi
You mentioned PayPal and I'm looking to set up Payments Pro which involves collecting credit card information on my own site in an HTML form which then gets passed to my PHP script. At this point it is transmitted securely via HTTPS but my question is do I need to secure the data from HTML form to PHP script???

Cheers

Last edited by tommyd; 24th November 2010 at 10:05 PM.
tommyd is offline  
Old 25th October 2012, 07:26 PM   #11
ctakacs
Rochen Community Guest
 
Join Date: Dec 2010
Posts: 4
I have a support ticket about PCI compliance open and I have a managed virtual server. I think you guys have all the info you need but have been waiting over a day for a response. I'm afraid to open my support ticket again because from what I understand, this puts me back further in line. how can I expedite this? The client is concerned because our site has failed a bank security audit.
ctakacs is offline  
Old 25th October 2012, 07:50 PM   #12
MikeS
Rochen Community Member
 
MikeS's Avatar
 
Join Date: Oct 2002
Location: Northants, UK
Posts: 4,352
Out of interest, why did it fail?
__________________
Until you've driven a modern diesel of this calibre, you just won't get it!
MikeS is offline  
Old 26th October 2012, 07:07 PM   #13
Adam
Rochen Community Guest
 
Join Date: May 2009
Location: California, USA
Posts: 1,599
Hi ctakacs,

We'd always update you as soon as your PCI compliance tweaks are completed. You can read more about the PCI compliance process here. Depending on the nature and number of the changes required by your ASV they can take anywhere from 24-72 hours to implement. Please don't post any account-specific info here in these public forums for security reasons, just await our update if your ticket is open, or just let us know if you have any further questions via that ticket if we've already answered it, thanks!
Adam is offline  
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 11:52 AM.


2000 2015 Rochen Limited. All Rights Reserved. Prices Exclude VAT.