Disable or remove port 443

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

katrinag

Thread Starter
Joined
Sep 18, 2018
Messages
1
We are an extremely small business that accepts credit cards and has to do the PCI compliance for accepting credit cards every 90 days. Today my scan failed because of port 443. I called the PCI compliance company and I was told that Port 443 was a 1.0 version and needs to be updated to 1.2 version or disabled? I have no idea what this means and I have been looking online for help and I can't find help.
Please let me know what I can do so it passes
 

Triple6

Rob
Moderator
Joined
Dec 26, 2002
Messages
52,933
Ports don't have version numbers, they are just tunnels to something on the other side, the thing accessed through that port probably has a certificate or SSL version that may need upgrading. You should hire a local IT firm to find out what is on port 443 and have them address it correctly, this is probably not a DIY with help from random internet strangers type of question since this is both a business and PCI compliance issue. If you have something legitimate on Port 443 then it may need significant upgrading from a software company or developer and blocking it may be cause lost of functionality
 

Chawbacon

Jack
Joined
Jul 9, 2018
Messages
627
Hello Katrinag,

It sounds like that the port issue that you are encountering resolve around Protocols that are used over port numbers, which are called Secure Sockets Layer (SSL) and Transport Layer Security (TLS).

At the beginning of 2015 the PCI Security Standards Council (PCI SSC) determined that SSL 3.0 (and below) and TLS 1.0 (and below) no longer met minimum requirements for protecting card holder data. Companies were given until June of 2018 to upgrade applications to TLS 1.1 or higher. Note - The most current version of TLS is 1.2.

As Rob implied... Upgrading to an accepted version of TLS may cause some connectivity issues for your company and your clients; which may involve some clients having to adjust browser settings to allow TLS1.1/1.2, or potentially cause B2B issues with incompatible protocols until upgraded. This is definitely a discussion to engage with your software vendor(s), who may already have an upgrade path available for implementation.

These protocols can be allowed/disabled at the server level, or network hardware level (firewall); however, you should conduct an audit of your workplace communications environment prior to that type of solution being used.

Additionally, after evaluating your workplace communication requirements, you should seriously consider disabling SSL and TLS 1.0 within your workplace browsers to protect work systems from potential compromise and for continued PCI compliance.

I hope this helps to explain a little of what you are up against.

Good Luck!
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,033
As Triple6 mentioned, due to the nature of this request, it's really beyond the scope of the assistance we should be providing here. You need to consult an IT professional to address your security concerns.

On that note, I'm closing this thread.
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top