SSL HTTPS vulnerability found on Data Repository Vertica host

book

Article ID: 196757

calendar_today

Updated On:

Products

CA Infrastructure Management CA Performance Management - Usage and Administration DX NetOps

Issue/Introduction

Security scan revealed a vulnerability related to SSL HTTPS configurations on the Data Repository host.

The scans were all related to port 5444.

Cause

The Vertica Management Console was in use.

Environment

All supported Performance Management releases

Resolution

Port 5444 is only used by the Vertica Management Console.

The Performance Management Data Repository Vertica database implementation does not utilize the Vertica Management Console.

It isn't set up or configured for use during normal Performance Management product operation and use.

To alleviate these concerns shut down or disable the Vertica Management Console.

Additional Information

Vertica Documentation for the use of the Management Console