PCI scan failing can FileZilla help

Need help with FileZilla Server? Something does not work as expected? In this forum you may find an answer.

Moderator: Project members

Post Reply
Message
Author
kmideas
504 Command not implemented
Posts: 6
Joined: 2013-10-21 16:39
First name: Stan
Last name: Kitson

PCI scan failing can FileZilla help

#1 Post by kmideas » 2013-10-21 17:29

Hi,

I'm getting a "Unencrypted Communication Channel Accessibility" error on ports 990 and 5050 when I run Trustwave PCI scan.

Port 5050 is the Listening Port in general settings.
Port 990 is set to Listen for Implicit SSL/TLS
I've created a certificate and have it assigned in the Private Key File and Certificate File.
Enable FTP over SSL/TLS is checked
Allow Explicit over TLS is checked
Disallow Plain Unencrypted FTP is checked
Force PROT P to encrypt... is checked.

My understanding is 990 is port designated for FTPS.

Is there anything more I need to do to make the FTP more secure so I can pass the PCI?

Thanks.

User avatar
botg
Site Admin
Posts: 35491
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: PCI scan failing can FileZilla help

#2 Post by botg » 2013-10-21 20:35

False-positive from that scanning tool. Due to the nature how these tools work, they can't know that users cannot login without having to first secure the control connection using AUTH TLS.

kmideas
504 Command not implemented
Posts: 6
Joined: 2013-10-21 16:39
First name: Stan
Last name: Kitson

Re: PCI scan failing can FileZilla help

#3 Post by kmideas » 2013-10-21 20:38

Thank you for the explanation.

Post Reply