Re: Which ports to block?
From: steve (securityfocus_at_delahunty.com)
Date: 07/26/04
- Previous message: Ant: "Fwd: antivirus for linux"
- In reply to: Ferino Mardo: "Which ports to block?"
- Next in thread: mike_at_genxweb.net: "Re: Which ports to block?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Ferino Mardo" <RMardo@ALJOMAIHBEV.com>, <security-basics@securityfocus.com> Date: Mon, 26 Jul 2004 15:10:10 -0400
Yes, I would not stop at 1023, would block all the way up.
You will likely need to allow 443 (SSL). Unless you only want un-encrypted
HTTP traffic (80).
Port 25 should really only be for your email server, not all employees.
Same for DNS server on 53.
----- Original Message -----
From: "Ferino Mardo" <RMardo@ALJOMAIHBEV.com>
To: <security-basics@securityfocus.com>
Sent: Saturday, July 24, 2004 4:03 AM
Subject: Which ports to block?
In setting up a "deny all" rule from a firewall, is it safe to block
ports 0 to 65535 or only up to 1023? My interest are only to allow port
53 udp, 25, and 80.
---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------
---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------
- Previous message: Ant: "Fwd: antivirus for linux"
- In reply to: Ferino Mardo: "Which ports to block?"
- Next in thread: mike_at_genxweb.net: "Re: Which ports to block?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
