PCI Compliance - Hub One
FIXED- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Business
- :
- PCI Compliance - Hub One
23-01-2018 3:48 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
After our first security audit with the new fibre broadband connection, we have been told there are some vulnerabilities that need to be addressed.
There are several high numbered ports open to the internet potentially accepting SSL connections, even though no ports have been forwarded and nothing is using Universal Plug and Play.
Since this behaviour is undocumented and the Hub One is locked down in terms of low level configuration, does this mean we need to buy an alternative router which we can demonstrate to the auditors is secure?
Fixed! Go to the fix.
23-01-2018 4:30 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
There's probably no need to change router - just turn on the Plusnet firewall.
https://www.plus.net/help/broadband/about-plusnets-broadband-firewall/
Note you have to disconnect/reconnect for settings to take effect.
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
Re: PCI Compliance - Hub One
23-01-2018 4:37 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Thanks, that's good advice, I believe the firewall was active.
Having disabled UPnP and rebooted the router, the issue seems to be resolved now. It appears to have been our remote access software opening unnecessary ports.
Re: PCI Compliance - Hub One
25-01-2018 6:02 AM - edited 25-01-2018 6:07 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Just to clarify, the router had a firewall setting, but on closer inspection this is separate from the Plusnet firewall which has to be set up online.
After a day the ports had re-opened, so it was necessary to go through this extra step, as was suggested by jelv.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page