Re: Discrepancies in port scanning = trouble?
From: Thor Kottelin (thor_at_anta.net)
Date: 09/20/03
- Next message: Eirik Seim: "Re: Which Router for VPN and Webhosting"
- Previous message: LRW: "Discrepancies in port scanning = trouble?"
- In reply to: LRW: "Discrepancies in port scanning = trouble?"
- Next in thread: Leythos: "Re: Discrepancies in port scanning = trouble?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 20 Sep 2003 22:54:23 +0300
LRW wrote:
> I used www.grc.com 's Shields Up port scanner, and it found all my
> ports in stealth mode, except 113 visible but closed.
> That worries me.
>
> But even moreso, I used SuperScan by foundstone to do a portscan of my
> IP, I suppose similar to what a scriptkiddie would do, and it found
> ports 25, 80, 110, 2468, 5678, and 6688.
I don't know those scanners, but here's a bunch of wild guesses:
The first scanner found your own system. You like to chat on IRC, so you run
an ident server.
The second scanner found a web proxy. Your ISP is a small-time operation
that uses that same box for mail and other stuff as well.
Some or all of the above is probably wrong, but at least we have a starting
point to discuss from. :-)
Follow-ups narrowed.
Thor
-- http://thorweb.anta.net/
- Next message: Eirik Seim: "Re: Which Router for VPN and Webhosting"
- Previous message: LRW: "Discrepancies in port scanning = trouble?"
- In reply to: LRW: "Discrepancies in port scanning = trouble?"
- Next in thread: Leythos: "Re: Discrepancies in port scanning = trouble?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
