Hi all, Just a quick question, misunderstanding. Our server will have a permanent presence on the internet. I have set up portsentry and when I scan the machine then it is reported as not there. When I activate SuSEfirewall (not the personal firewall the full one) then the scan lists all the ports as closed. (except the ones that I've opened) Surely it would be better if the host did not appear at all. Am I doing something wrong or is this the way that it works ??? If it is the way it works then how can I hide my host??? Thanks in advance Steve This message is sent in confidence for the addressee only. It may contain confidential or sensitive information. The contents are not to be disclosed, copied, or forwarded to anyone other than the addressee without permission. Unauthorised recipients are requested to preserve this confidentiality and to advise us of the error in transmission, by emailing us at: info@yeovil-college.ac.uk Thank you for your cooperation.
On Thu, 7 Feb 2002 13:31:45 -0000 Steve Fenwick <SteveF@yeovil-college.ac.uk> wrote:
Just a quick question, misunderstanding.
Our server will have a permanent presence on the internet. I have set up portsentry and when I scan the machine then it is reported as not there. When I activate SuSEfirewall (not the personal firewall the full one) then the scan lists all the ports as closed. (except the ones that I've opened)
Surely it would be better if the host did not appear at all.
Am I doing something wrong or is this the way that it works ??? If it is the way it works then how can I hide my host???
That's the way it's supposed to work. Only the ports you open, are seen from the internet. Shut all open ports if you want to be invisible. -- $|=1;while(1){print pack("h*",'75861647f302d4560275f6272797f3');sleep(1); for(1..16){for(8,32,8,7){print chr($_);}select(undef,undef,undef,.05);}}
I think you don't have the firewall up or it is facing the wrong interface. Or you are scanning from the wrong side. My SuSEfirewall-4.3-3 DENYs (drops) connects rather than REJECTs (return RST packet indicating closed port). However, if it is not up then Portsentry should have screamed like mad when scanned. How did you scan the firewall? Jeffrey Quoting Steve Fenwick <SteveF@yeovil-college.ac.uk>:
Hi all,
Just a quick question, misunderstanding.
Our server will have a permanent presence on the internet. I have set up portsentry and when I scan the machine then it is reported as not there. When I activate SuSEfirewall (not the personal firewall the full one) then the scan lists all the ports as closed. (except the ones that I've opened)
Surely it would be better if the host did not appear at all.
Am I doing something wrong or is this the way that it works ??? If it is the way it works then how can I hide my host???
Thanks in advance
Steve
This message is sent in confidence for the addressee only. It may contain confidential or sensitive information. The contents are not to be disclosed, copied, or forwarded to anyone other than the addressee without permission. Unauthorised recipients are requested to preserve this confidentiality and to advise us of the error in transmission, by emailing us at: info@yeovil-college.ac.uk Thank you for your cooperation.
participants (3)
-
Jeffrey Taylor
-
Steve Fenwick
-
zentara