Re: BUG: [Kernel 2.4.18 - IP Tables 1.2.4] ?

From: Craig Knox (crg@monster.gotadsl.co.uk)
Date: 02/28/02

Previous message: Gabriel A. Maggiotti: "Apache+php Proof of Concept Exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Craig Knox <crg@monster.gotadsl.co.uk>
To: Justin Piszcz <war@starband.net>
Date: 28 Feb 2002 13:37:31 +0000

Hi,
I think you forgot to read the line "(The 27 ports scanned but not
shown below are in state: filtered)".
If you had run nmap with the same options for both you would have got
the same output for both.

Regards
Craig Knox

> ##################################
> # RESULT
> ##################################
> NETFILTER SHOWS FILTERED PORTS:
> bash# nmap -sS -P0 -p 21,22,25,80,113,119,139,3128
> an.iptables-version-1.2.4.box.com
>
> Starting nmap V. 2.53 by fyodor@insecure.org ( www.insecure.org/nmap/ )
> Interesting ports onan.iptables-version-1.2.4.box.com (x.x.x.x):
> Port State Service
> 21/tcp filtered ftp
> 22/tcp filtered ssh
> 25/tcp open smtp
> 80/tcp filtered http
> 113/tcp open auth
> 119/tcp filtered nntp
> 139/tcp filtered netbios-ssn
> 3128/tcp filtered squid-http
>
> ###################################
> # IPFILTER
> ###################################
>
> ###################################
> # RESULT
> ###################################
> IPFILTER DOES NOT SHOW FILTERED PORTS:
> bash# nmap -sS -P0 -p
> 7,9,13,19,21,22,23,25,37,79,111,113,139,143,512,513,51,540,665,6000,6112,7100,32771,32772,32773,32774,32775,32776
> an.ip.filter.box.com
>
> Starting nmap V. 2.53 by fyodor@insecure.org ( www.insecure.org/nmap/ )
> Interesting ports on on.an.ipfilter.box.com) (x.x.x.x):
> (The 27 ports scanned but not shown below are in state: filtered)
> Port State Service
> 25/tcp open smtp
> 113/tcp open auth
>
> Nmap run completed -- 1 IP address (1 host up) scanned in 7 seconds
>
>
>
>

Previous message: Gabriel A. Maggiotti: "Apache+php Proof of Concept Exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Printserver Netgear PS101
... Die kriegt man mit nmap raus. ... Und um hier das konkrete Besipiel des Printservers beizusteuern: ... CET Interesting ports on homejet: ... PORT STATE SERVICE ...
(de.comp.os.unix.linux.hardware)
Re: Outgoing Port Check
... the ports accessible for example ... Not shown: 65522 closed ports ... PORT STATE SERVICE ... Nmap finished: 1 IP address scanned in 3.888 seconds ...
(Pen-Test)
Re: Printserver Netgear PS101
... Die kriegt man mit nmap raus. ... Und um hier das konkrete Besipiel des Printservers beizusteuern: ... Interesting ports on homejet: ... PORT STATE SERVICE ...
(de.comp.os.unix.linux.hardware)
Re: IP Telephony pen-test and VLANs
... Interesting ports on x.x.x.x: ... PORT STATE SERVICE VERSION ... 445/tcp open microsoft-ds Microsoft Windows 2000 microsoft-ds ... Download FREE whitepaper on how a managed service can ...
(Pen-Test)
strange logs
... It appears someone is trying to mess with my server. ... Interesting ports on adsl-69-209-152-51.dsl.sfldmi.ameritech.net ... PORT STATE SERVICE ... 139/tcp filtered netbios-ssn ...
(Security-Basics)