Re: Is this server secure enough? Is this server hackable?
- From: Anonyma <anon-bounces@xxxxxxxxx>
- Date: Thu, 3 Aug 2006 17:12:06 -0400 (EDT)
cyberquest wrote:
I have just help up in setting up a server in my company ... and I
attempt to do a NMap port scan ... the results is shown below
Interesting ports on
Your scan results tell us nothing at all. Was this a local, or remote
scan? How is your firewall configured? How are your services
configured? What versions are you running? What platform/kernel? Etc...
etc... etc...
The scan itself isn't even complete. Nmap defaults to poking at only
the most "popular" ports within a certain range. There could be open
ports we're not seeing, and some of those could point to an EXISTING
problem let alone a potential one. So aside from only assuming that you
apparently have something listening on some publicly accessible ports,
which is a risk of undetermined concern at this point, we know nothing.
My question is ... is this server secure enough to prevent hackers from
Don't take this the wrong way, but judging from what I've read here I'd
have to say it's probably not. The fact that you asked this question
assuming the provided information would permit a real answer points to a
very distinct possibility that you've "missed something" somewhere and
left a potentially gaping hole in your company's server that could
result in BadThings(tm) happening.
This is what training and experience are for, and why "the guy in
accounting who knows a lot about computers" is a poor choice when
companies are looking for someone to take their services public. :(
coming in and ... if this system is hackable ... how will the attackers
do it and how can I prevent it?
Go to school. Spend at least a couple years in an academic environment
cramming the theory into your noggin, even if you keep your day job.
Then spend at least 5 years gaining hands on experience under the
tutelage of a competent and experienced professional. At that point you
might be ready for some mid-level planning and implementation duties,
as long as you still have top notch supervisory people who can spot the
mistakes you'll be learning from. In about 12 to 15 years, if you're a
good student, you might be ready to don the hat of a go-it-alone
contract professional or the sort of upper level supervisor/admin who
should be responsible for setting up and securing corporate servers.
.
- References:
- Is this server secure enough? Is this server hackable?
- From: cyberquest
- Is this server secure enough? Is this server hackable?
- Prev by Date: Re: Is this server secure enough? Is this server hackable?
- Next by Date: Re: OpenSSH Windows Security
- Previous by thread: Re: Is this server secure enough? Is this server hackable?
- Next by thread: Re: Is this server secure enough? Is this server hackable?
- Index(es):
