Solved

Reverse NAT/Intercepting Proxy Detection

Posted on 2011-09-14
2
1,018 Views
Last Modified: 2012-06-27
Hello,

I'm doing a PCI complience scan on my network and one of the Vulnerabilities that comes up is:

Reverse NAT/Intercepting Proxy Detection
Port 0/tcp

+ On the following port(s) :
- 3389 (8 hops away)

The operating system was identified as :

Microsoft Windows 2000
Microsoft Windows XP

+ On the following port(s) :
- 443 (8 hops away)
- 110 (8 hops away)
- 143 (8 hops away)
- 25 (8 hops away)
- 80 (8 hops away)

The operating system was identified as :

Microsoft Windows 2000
Microsoft Windows Server 2003  


Any Idea how I can adjust the settings on these devices?
0
Comment
Question by:vrosas_03
2 Comments
 
LVL 6

Accepted Solution

by:
jgibbar earned 500 total points
ID: 36540699
At first glance, it would appear that the first PC is a WIndows PC with Remote Desktop enabled.
 -- Just disable remote access

If I was to guess, the second would be a mail server? (HTTP (80), HTTPS (443), SMTP (25), A common SSL Port for SMTP (143)
 -- Probably need these to remain open in order to function if the Host is an authorized main server.
0
 

Author Closing Comment

by:vrosas_03
ID: 36541024
WOW. Thanks!!! I disabled remote access on the firewall and disabled the webmail via IIS and those vulnerabilities were gone.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Hardening ScreenOS 8 130
Penetration Testing home based work 3 93
EXCHANGE 2007, EXCHANGE 2013 8 125
Change default Permissions for windows services 9 41
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question