Re: Agnitum Outpost

From: bassbag (bassbag@bodybags.dragon.wales)
Date: 03/05/03 

From: bassbag <bassbag@bodybags.dragon.wales>
Date: Wed, 5 Mar 2003 10:27:21 -0000

In article <2a3a6v4t7r2snbbv0haisauth8fn0k1jqp@4ax.com>,
artnpeg@claymania.com says...
> On Tue, 4 Mar 2003 11:11:19 -0000, bassbag
> <bassbag@bodybags.dragon.wales> wrote:
>
> >In article <2gg46v4p7u5dcrb2jd670kgkt1jvhrv6mc@4ax.com>,
> >artnpeg@claymania.com says...
> >> On Sun, 2 Mar 2003 11:55:56 -0500 (EST), "bluejay"
> >> <bluejay-no-spam@cotse.com> wrote:
> >>
> >> >Well, praise from the "mighty" is...etc., etc. : )
> >>
> >> Hmmm.
> >>
> >> >I had never heard of the Plank site. I tried it just before posting this.
> >> >Outpost passed all the exploits with only the default ICMP settings.
> >>
> >> The ICMP setting I mentioned is to acheive stealth on all ports, and
> >> it has nothing to do with the exploits test so far as I know.
> >>
> >> >But I did cheat some. I use the ancient Netscape 3.04 browser, which is too
> >> >"dumb" to allow itself to be buggered by all these new fangled hacker
> >> >tricks. That's why I love it. It works just fine with Win98SE.
> >>
> >> That's not good. Older versions of Netscrape have known
> >> vulnerabilities. Update your browser for sure!! You might take a look
> >> at the other Moz based browsers such as Mozilla itself. Personally, I
> >> like K-MELEON because of its speed. Anyway, your browser is irrelevant
> >> to firewall testing. Browser security is a separate issue.
> >>
> >> >I also keep Java and JS off, and I keep the cookie file write protected.
> >>
> >> No need if you update to a good Moz based browser. That's the
> >> advantage over using IE.
> >>
> >>
> >> Art
> >> http://www.epix.net/~artnpeg
> >> artnpeg@claymania.com
> >>
> >Hi art...Im curious why that setting need s to be unticked to achieve the
> >stealth status as im using outpost ,on the default setting which is to
> >have it ticked.Im using w98se and outpost probut i think the icmp
> >settings r same for free and pro versions.I wonder if tehres any other
> >factor involved here , that needs u to untick icmp in to achieve stealth?
> >me
>
> I never did raise the question at the Outpost forum. All I know is
> that on my Win 98 PC I must uncheck that ICMP setting or only a
> certain small handful of ports are stealthed. I simply pass that
> tidbit on to clue others in who might run into the same situation.
>
> Any ideas? I've poked around my W98 network settings and I don't see
> anything giving me a clue there. I've done Gibson's W98 unbinding
> procedure and without any firewall all ports are normally closed. But
> I haven't run across any reference in there to ICMP.
>
> Art
> http://www.epix.net/~artnpeg
> artnpeg@claymania.com
>
Mmm that is strange.Im not sure whats causing it.I can tell you my
settings which may help as i use 98 too.Ive also done the unbinding
procedure,somaybe if you check my settings against yours we may find
something?.
Im using rules wizard mode
for System>ICMP settings i have default i.e echo reply 0 in ,destination
unreachable 3 in ,echo request 8 out, and time exceeded for a datagram 11
in.All the those are ticked.Under the system tab i have "stealth.Do not
notify source via ICMP message " ticked (dotted)I have "allow netbios
communication unticked (not dotted)
For global application and system rules >settings i have
Allow dns resolving ticked (ive put my isps dns addresses there rather
than use any one)
Allow outgoing DHCP ticked
allow inbound identification unticked
allow loopback unticked
allow gre protocol ticked
allow pptp control connection ticked
block remote procedure call (tcp)ticked
block remote procedure call (udp)ticked
block server message block protocol (tcp) ticked
block server message block protocol (udp) ticked
deny unknown protocols ticked
That the settings i have using the pro and i believe they are the same
for the free.If you already have those settings , im at a loss to to know
why it doesnt work.But maybesomeone at the forum could give an answer
http://www.agnitum.com/forum/index.php?s=
me

Relevant Pages

  • Re: Agnitum Outpost
    ... >procedure,somaybe if you check my settings against yours we may find ... it's this Allow loopback that was ticked. ... But unticking it and going back to the ... >block server message block protocol ticked ...
    (comp.security.firewalls)
  • Re: error: operation timed out waiting for response from POP serve
    ... Specifically: Just with Windows running. ... install of Xp Pro and default Services settings. ... Does Outlook 2003 require Outlook Express? ... What services does outlook 2003 in conjunction with Xp pro must be active? ...
    (microsoft.public.outlook.installation)
  • Re: VPN & Linksys Router (BEFSR11)
    ... Remote PPP peer or computer is not responding. ... > I will suggest to check the router settings and make sure TCP Port 1723, ... >> I have an XP Pro box at home. ... but then disconnects saying that the network is not setup ...
    (microsoft.public.windowsxp.network_web)
  • Re: Form is truncated.....
    ... full-screen height, less a few pixels, but all ... This machine is set to 130 dpi, ... What are the settings of the Form's ... XP Pro, 19" on the win2k. ...
    (microsoft.public.vb.general.discussion)
  • Re: Locking Down Windows XP
    ... Per user Group Policy Restrictions for XP Home and XP Pro ... > number of settings that are in the Local Security Policy. ...
    (microsoft.public.windowsxp.security_admin)
Quantcast