Question
Digital Ocean PCI DSS Server Compliance
- Posted on April 15, 2015
- PHPSecurityDigitalOceanMonitoringUbuntu
Asked by stefankosmirak
Hey,
I’ve scanned resources regarding this within the DO community, but what level of PCI compliance are the DO servers if any?
I’m currently running a magento store and planning on letting users enter card information on site but process the transaction with 3rd party such as sage or stripe.
Has anyone tackled this before?
Thanks
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Want to learn more? Join the DigitalOcean Community!
Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.
I roughly followed this guide: http://bodhizazen.net/Tutorials/SSH_security
the droplet passed the PCI Compliance scanner on the first try. In years past (when I was using other hosting) there would always be something that needed fixing or updated, so it was nice to have it pass on the first go.
Moderator update (2021): Our certifications are now available via our Trust Platform at https://www.digitalocean.com/trust/certification-reports/
You can find information on our certifications/compliance for each datacenter here.
Much of PCI-DSS compliance depends on the configuration of your droplet and the services you run on it. We do not provide a hardened image by default but you receive full root access to configure your droplets as you require.
Hello there,
You can see the certificates and we recently changed this page so you can download the certificates you’d need here:
https://www.digitalocean.com/trust/certification-reports
Hope this helps!