PCI DSS compliance

5.3 Anti-virus is running

5.3.a Software is running

Anti-virus tooling should be running to discover malware threats. Depending on the software components used on Linux/Unix, this might be a daemon or hook into software (e.g. scanning for malware in e-mail).

5.3.b Protection against alteration

The software and configuration files should be protected against unauthorized changes. This include disabling the software, or changing the behavior of the anti-virus scanner.