On Thu, Aug 14, 2003 at 07:25:33PM +0100, Philip B Cook wrote:
I have checked using www.grc.com which ports I have open to the outside world and find that all ports up to 1056 are in stealth mode EXCEPT port 113 (IDENT) which is reported as closed. So my machine can be detected on this port although it will not respond.
the only thing you can do to avoid "detection" on the internet is to tell the router _before_ you (i.e. at your ISP) to respond with an "ICMP host unreachable". If i try to connect a machine and there is *no* response, i know there is something, if i get "ICMP host unreachable", i'm sure there is nothing. So go, talk to your ISP if they can arrange this for you. I'm sure they can. There may be some side effects, but it is worth it, believe me. oh, and there is a reason, why port 113 is rejected instead of dropped. Otherwise you (and others) would complain about problems connecting to some ftp or irc servers when using SuSEfirewall. -- Stefan Seyfried Senior Consultant community4you GmbH, Chemnitz, Germany. http://www.community4you.de http://www.open-eis.com