Messaging Gateway responds to ICMP timestamp requests

book

Article ID: 209896

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

A vulnerability scan of Messaging Gateway (SMG) warns that SMG will respond to an ICMP timestamp request.

Resolution

This does not represent a vulnerability as SMG does not make use of any time based authentication protocols. If the response to ICMP timestamp requests is a concern, those packets should be dropped at the firewall level.

While this does not represent an issue for the operation or security of Messaging Gateway, SMG's response to these ICMP packets may be removed in a future release.