Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Pedro_Marques
Participant

Hostname disclosure on port 264

Hi,

Port 264 is open on the gateways for Secureremote is this port realy necessary ?

There is some securety issues about the hostname disclosure as seen in the link bellow

CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure | Rapid7 

best regards,

5 Replies
PhoneBoy
Admin
Admin

See: Check Point response to SecuRemote Topology Service Hostname Disclosure 

TL;DR: The information is considered public.

0 Kudos
Tony_Graham
Advisor

You can uncheck in Global Properties, 'Accept Remote Access Control Connections' and it will shut down port 264 on the external interface.

There may be reasons you do not want to do that but if you have a small network with little or no remote access the above setting will not cause any issues and you can pass a port scan.

FW-guy
Explorer

Thanks! This was helpful and proved to be effective.

0 Kudos
Daniele_DiCaro
Explorer

Hey Tony,

I was searching for useful information regarding the port 264, because I need to understand which features would be compromised if I shut down that port. And your comment is one of the few interesting.

Can you explain me which reasons were you referring to? And why a network with little remote access won't be compromised?

Thank you in advance!

0 Kudos
_Val_
Admin
Admin

@Daniele_DiCaro Instead of reviving a three year old thread, why don't you ask your actual question in a separate post? 

(1)

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events