1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Disable or remove port 443

Discussion in 'General Security' started by katrinag, Sep 18, 2018.

Thread Status:
Not open for further replies.
Advertisement
  1. katrinag

    katrinag Thread Starter

    Joined:
    Sep 18, 2018
    Messages:
    1
    We are an extremely small business that accepts credit cards and has to do the PCI compliance for accepting credit cards every 90 days. Today my scan failed because of port 443. I called the PCI compliance company and I was told that Port 443 was a 1.0 version and needs to be updated to 1.2 version or disabled? I have no idea what this means and I have been looking online for help and I can't find help.
    Please let me know what I can do so it passes
     
  2. Triple6

    Triple6 Moderator

    Joined:
    Dec 26, 2002
    Messages:
    52,935
    First Name:
    Rob
    Ports don't have version numbers, they are just tunnels to something on the other side, the thing accessed through that port probably has a certificate or SSL version that may need upgrading. You should hire a local IT firm to find out what is on port 443 and have them address it correctly, this is probably not a DIY with help from random internet strangers type of question since this is both a business and PCI compliance issue. If you have something legitimate on Port 443 then it may need significant upgrading from a software company or developer and blocking it may be cause lost of functionality
     
  3. Chawbacon

    Chawbacon

    Joined:
    Jul 9, 2018
    Messages:
    540
    First Name:
    Jack
    Hello Katrinag,

    It sounds like that the port issue that you are encountering resolve around Protocols that are used over port numbers, which are called Secure Sockets Layer (SSL) and Transport Layer Security (TLS).

    At the beginning of 2015 the PCI Security Standards Council (PCI SSC) determined that SSL 3.0 (and below) and TLS 1.0 (and below) no longer met minimum requirements for protecting card holder data. Companies were given until June of 2018 to upgrade applications to TLS 1.1 or higher. Note - The most current version of TLS is 1.2.

    As Rob implied... Upgrading to an accepted version of TLS may cause some connectivity issues for your company and your clients; which may involve some clients having to adjust browser settings to allow TLS1.1/1.2, or potentially cause B2B issues with incompatible protocols until upgraded. This is definitely a discussion to engage with your software vendor(s), who may already have an upgrade path available for implementation.

    These protocols can be allowed/disabled at the server level, or network hardware level (firewall); however, you should conduct an audit of your workplace communications environment prior to that type of solution being used.

    Additionally, after evaluating your workplace communication requirements, you should seriously consider disabling SSL and TLS 1.0 within your workplace browsers to protect work systems from potential compromise and for continued PCI compliance.

    I hope this helps to explain a little of what you are up against.

    Good Luck!
     
  4. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,240
    As Triple6 mentioned, due to the nature of this request, it's really beyond the scope of the assistance we should be providing here. You need to consult an IT professional to address your security concerns.

    On that note, I'm closing this thread.
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1216703

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice