Has anyone passed PCI compliance with ports open to Syncthing nodes? Tests want all certificate signed by CAs (fake sense of security, but these are the requirements).
I have a business to run. It is sad that there is such a low a level of understanding of real security, and that real security actually comes back as a vulnerability. If one uses Google Drive, Onedrive, Dropbox, and iCloud to store client payment information all is well for PCI purposes, but a Syncthing node is unsecure? What a joke.
If anyone has passed PCI compliance without the obvious temporary solution please let me know.