I have a server trying to meet PCI compliance and the scan from Trustwave has highlighted the details below regarding port 21 and port 2077.
Tech support for my server says these can be blocked but they don't offer a service for doing the actual work. They say it can be done using IP tables as it is a dedicated server.
So as far as I understand, I need to get these ports blocked and am looking for someone with the skills and knowledge to do this.
Unencrypted Communication Channel Accessibility
The service running on this port (most often Telnet, FTP, etcâ€¦) appears to make use of a plaintext (unencrypted) communication channel. Payment industry policies (PCI 1.1.5.b, 2.2.2.b, 2.3, & 8.4.a) forbid the use of such insecure services/protocols. Unencrypted communication channels are vulnerable to the disclosure and/or modification of any data transiting through them (including usernames and passwords), and as such the confidentially and integrity of the data in transit cannot be ensured with any level of certainty.
Web Application Transmits Login Credentials Without Encryption
There is a web application running on this host that transmits login credentials over HTTP, which is a cleartext protocol. As such, if an attacker was able to intercept traffic containing login credentials, it would be trivial to view user account and password information."
8 freelancers are bidding on average £55 for this job
I can do that in Linux. Ready to work on this.. will deliver project with in time. please assign to me. looking forward to work with you my skype id - mail.smaity