An HTTP server is enabled on the device for Cisco

Vendor

Cisco

Description

Indeni will check if a device has the HTTP service enabled. HTTP is not encrypted and is therefore a security risk.

Remediation Steps

Disable the HTTP server on the device.

1. Disable the HTTP server on the device. You can do so by using the "no feature http-server" configuration command.

2. You can verify that HTTP has been disabled by using the "show http-server" command.

How does this work?

This script logs in to the Cisco Nexus switch using SSH and retrieves the current state of the telnet server by using the "show http-server" command.

Why is this important?

This script logs in to the Cisco Nexus switch using SSH and retrieves the current state of the telnet server by using the "show http-server" command.

Without Indeni how would you find this?

The administrator would have to manually log in to the device and check if the HTTP server is enabled. It is also possible to detect TCP port 80 open by using port-scanning software.


View Source Code