Web Server SSL Port HTTP Traffic Detection

info Nessus Plugin ID 15588
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

An SSL detection issue might impede the Nessus Scan.

Description

Nessus has discovered that it is talking in plain HTTP on an SSL port.

Nessus has corrected this issue by enabling HTTPS for this port only. However, if other SSL ports are used on the remote host, they might be skipped.

Solution

Enable SSL tests in the 'Services' preference setting, or increase the timeouts if this option is already set and the plugin missed this port.

Plugin Details

Severity: Info

ID: 15588

File Name: apache_SSL_complain.nasl

Version: Revision: 1.22

Type: remote

Family: Web Servers

Published: 11/1/2004

Updated: 9/17/2015

Dependencies: find_service1.nasl

Vulnerability Information

CPE: cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*