Security Basics mailing list archives
Re: Nessus Scan
From: David Jacoby <security () outpost24 com>
Date: Thu, 16 Aug 2007 07:54:16 +0200
Mike F wrote:
After a recent external PCI Compliant scan one of my web servers failed because the scanner determine that "a port was open at the beginning of the scan, and is now closed...". I've tried all sorts of things to get this corrected the results remain. I talked with our scanning vendor they don't seem to have answer as to how to correct the problem. When I do a Nessus Scan on the site, Nessus reports the issue as a security note and risk factor of '0', however the my PCI scanning vendor reports the problem as a risk factor of 4 thus causing the server to fail the scan and resulting a non-compliance report.
Outpost24 is a automated vulnerability scanning vendor and we have seen similar behavior, when we where looking into the problem we often saw that it was data ports that was opened, especially if the server was having alot of traffic going thought it.
I haven't been able to find anything on how to address this issue. Where should i look to resolve this problem
Do you get this result about the open port every time you scan the machine? If you are running *NIX cant you check with netstat to see which process thats listening on that port? Best regards, David Jacoby -- David Jacoby Vice President Customer Experience http://www.outpost24.com
Current thread:
- Nessus Scan mikef (Aug 15)
- Re: Nessus Scan Chris Halverson (Aug 15)
- Re: Nessus Scan Erik Luken (Aug 16)
- RE: Nessus Scan Craig Wright (Aug 15)
- RE: Nessus Scan Erin Carroll (Aug 16)
- RE: Nessus Scan Craig Wright (Aug 16)
- RE: Nessus Scan Erin Carroll (Aug 17)
- RE: Nessus Scan Erin Carroll (Aug 16)
- Re: Nessus Scan Chris Halverson (Aug 15)
- RE: Nessus Scan Michael LaSalvia (Aug 15)
- RE: Nessus Scan Serge Vondandamo (Aug 16)
- Re: Nessus Scan David Jacoby (Aug 17)
- RE: Nessus Scan Chandresh Dedhia (Aug 16)
- <Possible follow-ups>
- Re: Nessus Scan levinson_k (Aug 16)
- Re: RE: Nessus Scan mikef (Aug 16)
- Re: Nessus Scan Steve Hillier (Aug 16)
- Re: Nessus Scan mikef (Aug 16)
- Re: Nessus Scan mikef (Aug 16)