Re: Strange Thing

From: Geese_Hunter (Géésé_Huntér_at_yahoo.com)
Date: 03/02/04 

Date: Mon, 1 Mar 2004 19:18:36 -0600

In article <4fL0c.1708$XB.1181@newsfe1-gui.server.ntli.net>,
noemail@noemail.com says...
> Thanks Luka, how do I try it from the other machine? What do I do?
> "Luka Vuletic" <lvuletic@HARVESTTHIS.sezampro.yu> wrote in message
> news:c1vv2b$p0t$1@news.beotel.net...
> > Dave.S wrote:
> >
> > > Hello all. Okay I have a firewall and wanted to test my security so I
> > > used the Symantec site and this is the results.
> > > Ports ICMP, 23 & 80 open.
> > > Ports 21, 22, 113, 135, 139, 445, 1080, 1723 & 5000 closed & all other
> ports
> > > stealth.
> > > Next I went to shields up site and did a scan, this scan reported all
> ports
> > > as stealth. How can it be different? Is it a crafty way for Symantec to
> get
> > > you to buy there products?
> > >
> > > Anyway next I installed Zone alarm free version and did the same scans
> on
> > > both sites and the results were exactly the same as with my other
> firewall.
> > > So I tried to configure Zone alarm to make me more secure but the free
> > > version does not have any options for closing ports as far as I can
> tell.
> > >
> > > So what I would like to know is your opinion on the ports status that I
> have
> > > listed and do I need to take any action?
> >
> > Firstly, I was suspicious about symantec, and I almost said "bah, forget
> > it", then I wanted to check myself, and found that I scored complete
> > stealth status with them, using proxy or not. Maybe GRC got sloppy? Not
> > sure, altho I would rather trust Shields Up! than Symantec when it comes
> > to testing. They are not trying to sell you any firewalls, after all. I
> > am using Kerio 2.1.5.
> >
> > You can try to reach yourself on that ports from other machine, and see
> > if you get any feedback or not.
>
>
>
1st thing I didn't like about the Symantec "security scan" was they
wouldn't allow me to use my Firebird browser, then the pop up about the
security warning to install. Must use Netscape or IE. Shields up said I
was stealthed on every port. Boy it takes a long time to test all ports
going in 64 port increments.
The results:
Hacker exposure - stealth all ports (18 ports & ping)
Windows Vulnerability - Secure
Trojan Horse Check - 127 ports checked all stealthed
AV Product Check - "Warning! No known virus protection software found".

Since most firewall progs. stealth the ports, why wouldn't
hackers/trojan writers/ etc. write programs to run the script anyway, or
aren't they that smart & now I've just let the cat out of the bag.
I'd almost rather be able to close ports & then let the firewall stop
incoming traffic on the ports that aren't closed.

Quantcast