• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Open Ports

N

NVETHIS

Member
Is there a website I can go to to have it test what ports are open on my server and accepting incoming connections?

-Bryan
 
n0cmonkey - what makes you say that? Considering most of the ways script kiddies find you now is via ping sweeps...stealth sounds like a good idea to me.
 
Originally posted by: yelo333
n0cmonkey - what makes you say that? Considering most of the ways script kiddies find you now is via ping sweeps...stealth sounds like a good idea to me.
Click to expand...

Some ICMP is good, and it's still trivial to find out if someone is online or not. If the machine was not there, the router should send back errors.

EDIT: Send back errors, as opposed to silently dropping the traffic into the void.
 
Originally posted by: n0cmonkey
Originally posted by: yelo333
n0cmonkey - what makes you say that? Considering most of the ways script kiddies find you now is via ping sweeps...stealth sounds like a good idea to me.
Click to expand...

Some ICMP is good, and it's still trivial to find out if someone is online or not. If the machine was not there, the router should send back errors.

EDIT: Send back errors, as opposed to silently dropping the traffic into the void.
Click to expand...

I've seen it articulated like that before, but never stopped to think about it long enough. Still, stealthed seems like a better alternative to closed, as now, it still gives less then a "I'm alive and well, I'm a windoze box, and open for attack, hit me!".
 
Originally posted by: yelo333
Originally posted by: n0cmonkey
Originally posted by: yelo333
n0cmonkey - what makes you say that? Considering most of the ways script kiddies find you now is via ping sweeps...stealth sounds like a good idea to me.
Click to expand...

Some ICMP is good, and it's still trivial to find out if someone is online or not. If the machine was not there, the router should send back errors.

EDIT: Send back errors, as opposed to silently dropping the traffic into the void.
Click to expand...

I've seen it articulated like that before, but never stopped to think about it long enough. Still, stealthed seems like a better alternative to closed, as now, it still gives less then a "I'm alive and well, I'm a windoze box, and open for attack, hit me!".
Click to expand...

We know that pings are unreliable these days, so we don't rely on them exactly. Try a TCP connection to an IP address. If a RST is returned, there is a host there and the port is closed. If a host unreachable(?) is sent back, then there is no host there. If nothing happens, there's probably a host and the host is dropping the packets silently.

Showing the ports as closed tells someone that you're actually using a firewall, so they might as well move on to an easier target.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top