QualysGuard vulnerability scanners are alerting to vulnerabilities in ports 8443 and 8445 where the ports are allowing anonymous access over ssl. Can someone please explain why McAfee ePO 4.0 behaves in this fashion and if it is at all possible to further secure this communication? Thanks.
tomcat5.exe (2768), localhost, 8445, , 16423, TCP, Listen
tomcat5.exe (2768), localhost, 8443, , 39001, TCP, Listen
tomcat5.exe (2768), localhost, 8445, localhost, 3412, TCP, Established
EventParser.exe (2576), localhost, 3412, localhost, 8445, TCP, Established
Message was edited by: mgx on 6/30/11 1:06:34 PM CDT