Details
NGINX can be configured to listen on any port, but it should be configured to listen on authorized ports only.
Rationale:
Limiting the listening ports to only those that are authorized helps to ensure no unauthorized services are running through the use of nginx.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
If any ports are listening that are not authorized, comment out or delete the associated configuration for that listener.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.