Get SMTP Port 25 to be PCI compliant

1152600 pts.
Tags:
PCI compliance
PCI DSS
SMTP
We're running a PCI compliance scan on our server and it keeps failing on port 25 with this message:
SSL Server Supports Weak Encryption nCircle ID: 6174 Port: 25 CVSS Score: 5.8 Not Compliant Description The SSL (Secure Socket Layer) Server supports weak encryption keys, which are defined as encryption keys with lengths of less than 128 bits. Messages encrypted with weak encryption keys are relatively easy for an unauthorized user to decrypt.
So we're tried to modify it but nothing is working. Our web and IMAP ports are fine. Any help would be appreciated.
0

Answer Wiki

Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • Kevin Beaver
    SMTP running on port 25 doesn't use SSL/TLS. Only SMTPS running on port 465 does. Sounds like a false positive to me.
    27,520 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.

Following

Share this item with your network: