Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
driverdan
6y ago
0 comments
Save
Share
Why would you need to disable autocomplete passwords for PCI compliance?
0 comments
2 comments · 1 top-level
top
newest
oldest
toast0
6y ago
· 1 in thread
Because either the PCI standard says so, or the PCI consultant says so.
PCI compliance is about checking boxes, not weighing the options and making good choices.
cdubzzz
6y ago
Exactly this. Some of the checks _are_ valuable. We found a couple of real issues and made good security improvements. But we also ticked off more than a few boxes that made no damn real sense.
j
/
k
navigate · click thread line to collapse
