Hot!PCI Compliance Scan Failed

Author
Ichi
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/01/12 11:15:36
  • Status: offline
2018/01/12 11:25:07 (permalink)
0

PCI Compliance Scan Failed

Trustwave is scanning my company's physical IP address for vulnerabilities.
 
The scan's results are always showing "failing" for two issues.
 
The vulnerability name is "SSL Certificate Public Key Too Small" for ports 8010 and 8013.
 
Despite installing a 4096 bit SSL certificate, the scan is still failing.
 
Does anyone have advice how to fix this?
#1

2 Replies Related Threads

    kevinschmall
    New Member
    • Total Posts : 1
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/03/17 05:07:36
    • Status: offline
    Re: PCI Compliance Scan Failed 2018/03/17 05:09:23 (permalink)
    0
    I'm having the same problem, did you figure this out?
    #2
    emnoc
    Expert Member
    • Total Posts : 4897
    • Scores: 300
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: offline
    Re: PCI Compliance Scan Failed 2018/03/17 07:03:14 (permalink)
    0
    What's using  port 8010 and 8013 and what  certificate is bound to that two services? By just installing a certificate alone does not mean all services uses that certificate.
     
    So in your case 8010/8013 are probably policy override and  telemetry (  assuming here ) so disable these services if they are not required
     
    I would review this  post  for  the 8010/8013 issues but these port by default do not have ssl/tls services
     
    https://forum.fortinet.com/tm.aspx?m=124655
     
     
     
     
    Ken
     

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #3
    Jump to:
    © 2018 APG vNext Commercial Version 5.5