DigitalOcean

Report this

What is the reason for this report?
Question

"Scan Interference" PCI compliance test issue

Posted on August 10, 2017
Security
LEMP
Ubuntu 16.04
CLAE

By CLAE

i created a fresh LEMP droplet but when i do a PCI scan (using “hackerguardian.com”) i get the following:

Status: Automatic Failure as listed by the PCI SSC (This must be resolved for your device

Plugin: “Scan Interference”

Synopsis: Possible scan interference detected.

Description The results of the scan indicate scan interference may have occurred during the scanning process. This may be caused by the server not responding during scanning or if it stopped responding during the scan. Please check for the ‘Open Port Re-check’ report item in the case where the server stopped responding. Please ensure that all IP Addresses and publicly accessible ports are accessible to the scanners for the full duration of the scan. If you have checked this and can confirm that no scan interference has taken place this item may be marked as a false positive. Please provide full details to confirm the scan completed without any interference.

i installed NO firewall or anything from my side, so my question is , what is causing the “Scan Interference” ?



This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
0
makememodern
makememodern
April 17, 2018

Did you ever find the solution? Running into this issue myself. Thanks!

0
alexdo
alexdo
June 9, 2022

Hello there,

Looking at the report itself - “Please check for the ‘Open Port Re-check’ report item in the case where the server stopped responding. Please ensure that all IP Addresses and publicly accessible ports are accessible to the scanners for the full duration of the scan.”

I would suggest whitelisting the IP addresses of the scanners and ensuring they can scan the ports of the droplet as well.

Regards

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and SMBs

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2025 DigitalOcean, LLC.Sitemap.