Re: TCP Port 53 Closed

From: Paul Hulatt (paul_at_REMOVE-NO-SPAMhulatt.co.uk)
Date: 09/12/03

Next message: Lars M. Hansen: "Re: TCP Port 53 Closed"
Previous message: Dan Ferris: "Re: IP filtering for Win 2000 Server"
In reply to: Lars M. Hansen: "Re: TCP Port 53 Closed"
Next in thread: Lars M. Hansen: "Re: TCP Port 53 Closed"
Reply: Lars M. Hansen: "Re: TCP Port 53 Closed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 11 Sep 2003 22:42:04 GMT

Lars M. Hansen <badnews@hansenonline.net> wrote in
news:u291mv82q1kfd7sl5papphtpcjtdokj951@4ax.com:

> On Thu, 11 Sep 2003 15:26:00 GMT, Paul Hulatt spoketh
>
>>We have had an external Attack and Penetration test performed on one
>>of our web servers and one of the findings was that TCP Port 53 was
>>reported as being closed.
>>
>>We use a PIX515 firewall and I would like to know how to go about
>>stopping this from happening. Any assistance would be greatly
> Port 53 should be closed, unless you're running a publicly accessible
> DNS server.
>
> Lars M. Hansen
> http://www.hansenonline.net
> (replace 'badnews' with 'news' in e-mail address)
>

Well, the testing company are telling our client that this is a
vulnerability, is there any way to stealth this port to stop it showing
up?

Best Regards

Paul.

Next message: Lars M. Hansen: "Re: TCP Port 53 Closed"
Previous message: Dan Ferris: "Re: IP filtering for Win 2000 Server"
In reply to: Lars M. Hansen: "Re: TCP Port 53 Closed"
Next in thread: Lars M. Hansen: "Re: TCP Port 53 Closed"
Reply: Lars M. Hansen: "Re: TCP Port 53 Closed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Proper Router Routing, Two IP addresses?
... If you wanted to make the SBS web services available to its domain users from outside the network on HTTP, port 80 and you also wanted to run a public web server then the only safe way would be to use two separate machines, isolated from each other, and you would have no option but to use two different IP addresses. ... The server's integrated NIC goes into the hub, and it's NIC card goes to the router. ... It's almost always web servers which people want more than one of, and it's perfectly possible to run multiple web servers on one machine, if a router is redirecting port 80 on different public addresses to different ports on an internal machine, or of course to different NICs. ...
(microsoft.public.windows.server.sbs)
AW: Secure those servers
... Subject: AW: Secure those servers ... > where it gets foggy for me) then another firewall with open ... > the web servers to talk to the other servers, ... the outer firewall should be configured to let through port 80 to the cache. ...
(Security-Basics)
Re: What do I need to do?
... On March 4, 2004 04:08 am, Thomas E. Dukes wrote: ... so I can get www requests on both the visable and internal machine? ... To use both boxes as web servers, you probably need to set the incomint port ...
(RedHat)
Re: OpenSSH 3.4p1 Trouble on SCO 5.0.5?
... connections across the US so I can see 1 hop from Orlando to ... I neglected to indicate that the machine is behind a firewall and port ... that MUST be connected - eg mail servers and web servers. ... NIC would go to your business machines on a totally private network ...
(comp.unix.sco.misc)
Restricting access to a web server by IP
... 2000 web servers by IP address (so that the firewall only gives access to a ... remote control clients, etc - we remotely ... The argue for is that it secures us from hackers who specially target the ... The agrument against is that mpst vulnerabilities seem to come through port ...
(comp.security.firewalls)