Mailinglist Archive: opensuse-security (409 mails)

< Previous Next >
Re: [suse-security] Open Ports on Webserver - Why
  • From: Peter Wiersig <wiersig-ml@xxxxxxxxxxxxx>
  • Date: Mon, 5 Aug 2002 09:43:17 +0200
  • Message-id: <20020805094317.A9156@xxxxxxxxxxxxx>
Florian Schießl wrote:
>
> When I close the whole Server whith iptables, the portscanner says the
> same.
>
> Iptables -P INPUT DROP
> Iptables -P OUTPUT DROP
>
> The scanner says, that pop,smtp,http,... And the other mentioned ports
> are open? Häh?

Understand your portscanner.

If your utility expects a tcp-reset packet after a syn-packet to a
closed port, your DROP-rules cause the scanner to misreport the
open ports list.

Peter

< Previous Next >