Hi,
I ran a PCI DSS scan on the prtg probe that is opened to the internet. I got automatic fail, please see below
Security Notes found on port/service "mssql (27660/tcp)"
Status
Automatic Failure as listed by the PCI SSC (This must be resolved for your device to be compliant) Plugin
"Microsoft SQL Server TCP/IP Listener Detection"
Category
"Service detection "
Priority
"Low Priority
Synopsis
A database server is listening on the remote port.
Description The remote host is running MSSQL, a database server from Microsoft. It is possible to extract the version number of the remote installation from the server pre-login response.
Risk factor NONE / CVSS BASE SCORE :0.0
Please advise what to do.
Hello,
Thank you very much for using PRTG. PRTG does not use MS SQL. It does not run such a server, neither the PRTG Probe nor the Core. This has to be a false positive then.
best regards.
Nov, 2014 - Permalink