Facebook
Twitter
A
arctic_ged
Guest
Hi,
I just completed a PCI vulnerability scan, which found a security vulnerability listed below. Does anyone know how I can fix this.
TCP 80 http
Synopsis : The remote web server seems to transmit credentials in clear text. Description : The remote web server contains web pages that are protected by 'Basic' authentication over plain text. An attacker eavesdropping the traffic might obtain logins and passwords of valid users.
Solution: Make sure that HTTP authentication is transmitted over HTTPS. Risk Factor: Low / CVSS Base Score : 2.6 (CVSS2#AV:N/AC:H/Au:N/C
/I:N/A:N)
I just completed a PCI vulnerability scan, which found a security vulnerability listed below. Does anyone know how I can fix this.
TCP 80 http
Synopsis : The remote web server seems to transmit credentials in clear text. Description : The remote web server contains web pages that are protected by 'Basic' authentication over plain text. An attacker eavesdropping the traffic might obtain logins and passwords of valid users.
Solution: Make sure that HTTP authentication is transmitted over HTTPS. Risk Factor: Low / CVSS Base Score : 2.6 (CVSS2#AV:N/AC:H/Au:N/C
/I:N/A:N)