Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
278
Views
0
Helpful
1
Replies

FTP not enabled but port 21 opened on 3000 concentrator?

wgorman
Level 1
Level 1

‎10-05-2006 06:22 PM - edited ‎03-09-2019 04:26 PM

How can this be?

The VPN 3000 concentrator management software shows that FTP is not enabled, but port 21 is open when I scan the device and try to logon, but fail. I do not have admin rights to it; a network staff member showed me that it was supposed to be not enabled. I monitor an IDS 4250 and reported that the IDS sig 3171 was triggered over 200 times by a European internet IP. I believe that the FTP service is compromised. What is the worst case scenario?

Is the device owned?

Labels:
0 Helpful
1 Reply 1

wgorman
Level 1
Level 1

‎10-06-2006 09:01 AM

update: the network staff member was looking at the wrong concentrator. the ftp was enabled according to management software. we disabled the ftp protocol and I suggested to change the password. The concentrator is safe now, RIGHT?

0 Helpful
Customers Also Viewed These Support Documents