I have a client that runs Port scanning, And the appservers fail because of this, and provide this error
PROGRESS Appserver network protocol mismatch (5565)
and after checking the knowledgebase, it is a known issue with port scanning. I created a case 287506 and was told to log an IDEA in order to get this looked into.
The client believes this to be a security issue - and the response of not running the port scan on these ports, does not appear to be a reasonable solution.
Are there plans to investigate and solve this issue ? The client is very interested in pursuing this. What is our next step?
I should also include Case 290214 - it is the current case that I have opened
we opened Case - 00329547
Check case #00433677 with related issue. From a security standpoint, port scanning is a must and is not going away. As security has now become a #1 priority for most IT departments, Progress' position of not recommending port scanning and suggesting excluding ports from the port scanner does not seem to be a viable solution.
Network scanners are extremely common nowadays. Cyber Security has board level visibility. Progress needs to fix their software and handle network traffic in a more reliable fashion.
What if an attacker decides to use a port scanner against us? We have now just been subjected to a Denial of Service attack which will cause us direct financial impact. Fix this.