I'm not a network guy so please forgive me if this is a simple answer.
We have to be PCI compliant. We passed the network scan last year, and failed this year with this report:
TCP 2323 - Unencrypted Communication Channel Accessibility.
Description: The service running on this port appears to make use of a plaintext (unencrypted) communication channel. The PCI DSS forbids the use of such insecure services/protocols. Unencrypted communication channels are vulnerable to the disclosure and/or modification of any data transiting through them (including usernames and passwords), and as such the confidentially and integrity of the data in transit cannot be ensured with any level of certainty.
Remediation: Transition to using more secure alternatives such as SSH instead of Telnet and SFTP in favor of FTP, or consider wrapping less secure services within more secure technologies by utilizing the benefits offered by VPN, SSL/TLS, or IPSec for example. Also, limit access to management protocols/services to specific IP addresses (usually accomplished via a "whitelist") whenever possible.
How do I find what's using this port? I'm not a network guru, just a volunteer for our organization. Thanks
This thread was automatically locked due to age.
