Re: security test scans - ports?
From: Michael Heiming (michael+USENET_at_www.heiming.de)
Date: 08/04/05
- Previous message: ac: "security test scans - ports?"
- In reply to: ac: "security test scans - ports?"
- Next in thread: Mailman: "Re: security test scans - ports?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 4 Aug 2005 20:06:21 +0200
In comp.os.linux.security ac <aec@candt.demon.co.uk>:
> I am a fairly new linux user, and would like to be aware of security
> basics. I have seen a number of online security howtos, although some
> are a bit advanced for me I think.
> Previously I used 'doze and used sygate personal firewall (free for
> individuals), so with my linux box I have used sygate online security scan.
> At the stage of probing ports, althoug ports are closed, I see that the
> report points out that
> the port responds and mentions
> 'known tcp/ip stack vulnerabilities'
Probably meant for doze users, IIRC the only TCP/IP stack
vulnerability I can remotely remember was in 2.0.?? and required
a local account. Never heard about a remote TCP/IP stack
vulnerability.
> I am using suse 9.3 with adsl internet access via a vigor modem router
> and ethernet connection to the PC.
> (UDP)
> FTP DATA 20 CLOSED
> This port has responded to our probes. This means that you are not
> running any application on this port, but it is still possible for
> someone to crash your computer through known TCP/IP stack vulnerabilities.
> Trojan 54321 CLOSED
> This port has responded to our probes. This means that you are not
> running any application on this port, but it is still possible for
> someone to crash your computer through known TCP/IP stack vulnerabilities.
> Examples of port scan probes are shown above, and I would be most
> grateful for comments (at near newbie level ?)
If you aren't running any services, then there's no problem, but
I'd suggest to configure iptables in addition, so you are save
even if you run services or/and make some mistake configuring
them. In any case, keep your system updated on a regular base,
there should be distro provided tools to make it pretty easy for
you.
Good luck
-- Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94) mail: echo zvpunry@urvzvat.qr | perl -pe 'y/a-z/n-za-m/' #bofh excuse 331: those damn raccoons!
- Previous message: ac: "security test scans - ports?"
- In reply to: ac: "security test scans - ports?"
- Next in thread: Mailman: "Re: security test scans - ports?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
