Re: how deep do i need to dive ?
From: Ari Rankum (Ari_Rankum_at_invalid.invalid)
Date: 03/28/04
- Previous message: Beowulf: "Re: how deep do i need to dive ?"
- In reply to: Beowulf: "Re: how deep do i need to dive ?"
- Next in thread: Beowulf: "Re: how deep do i need to dive ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 28 Mar 2004 15:25:44 GMT
Beowulf wrote:
> On Sun, 28 Mar 2004 06:07:03 +0000, Ari Rankum wrote:
> ..
>
>>done that, you might avail yourself of the "ShieldsUp" test at
>>www.grc.com, or some similar over-the-net scanner. ..
>
>
> I had done that and the grc.com scan of my system showed it was locked up
> tight, no open ports, very secure. That is a good sign I am thinking?
That's a good sign. It's an incomplete sign, but a good sign. It's
incomplete because Gibson either scans a pre-defined list of ports, or a
custom list that you specify, but never *all* tcp and *udp* ports. Lots
of trojans install servers on obscure high-numbered ports.
In addition to nessus, take a look at nmap for remote scanning of a
machine. Locally, you can do:
nmap [your IP address] -p 1-65535
nmap [your IP address] -sU -p 1-65535
-and-
lsof | grep TCP
lsof | grep UDP
- Previous message: Beowulf: "Re: how deep do i need to dive ?"
- In reply to: Beowulf: "Re: how deep do i need to dive ?"
- Next in thread: Beowulf: "Re: how deep do i need to dive ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
