I'm running Windows 7 Home Premium 64-bit. I process credit cards for my business and have to pass quarterly scans done by Security Metrics. I'm having trouble passing them this time around. I have 3 things listed regarding ports. They all identical except for the port numbers, which are 256, 257, and 258. This is the message Security Metrics gives me:
Synopsis : The remote firewall is leaking information. Description : The remote host has the three TCP ports 256, 257, and 258 open. It's very likely that this host is a Check Point FireWall/1. A remote attacker could use this information to mount further attacks. See also : http://www.securitymetrics.com/u?f189d2b 7 Solution: Do not allow any connections on the firewall itself, except for the firewall protocol, and allow that for trusted sources only. If you have a router that performs packet filtering, add an ACL that disallows the connection to these ports for unauthorized systems. Risk Factor: Medium / CVSS Base Score : 5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
When it says it's likely a "Check Point Firewall", what does that mean? How do I fix this? It's driving me crazy. Any help at all would be appreciated. At the rate I'm going, I'll be bald before I get this figured out.