A unica porta que consta como "open" � a 443. Se vc quiser testar, va em qualquer maquina da rede e de um telnet ip porta para o seu servidor. Mas isso realmente n�o quer dizer que seu servidor esteja seguro.
On Sat, 12 Jul 2003 04:30:37 -0300 "FreeBSD" <[EMAIL PROTECTED]> wrote: > Luiz, > > Gostaria de saber se estou realmente barrando as portas abaixo (execeto a > 443) e o que mais eu poderia instalar no firewall para ajudar na seguran�a. > (ex: Um SNORT, PORTSENTRY(IDS) ou qualquer outra coisa). > > Alan Lopes > > ----- Original Message ----- > From: "FreeBSD" <[EMAIL PROTECTED]> > To: "Grupo Brasileiro de Usuarios FreeBSD" <[EMAIL PROTECTED]> > Sent: Saturday, July 12, 2003 3:09 AM > Subject: [FUGSPBR] OFF-TOPIC - NMAP eoutros > > > > Galera, > > > > Instalei um firewall e depois passei o NMAP de uma rede externa o mesmo > me > > retornou o log abaixo, alguem podem me explicar o que esta acontecendo. > > > ============================================================================ > > ================ > > Starting nmap V. 3.00 ( www.insecure.org/nmap ) > > Interesting ports on xxxx.xxxxx.com.br (XXX.XXX.XXX.XXX): > > (The 1593 ports scanned but not shown below are in state: filtered) > > Port State Service > > 20/tcp closed ftp-data > > 21/tcp closed ftp > > 22/tcp closed ssh > > 25/tcp closed smtp > > 110/tcp closed pop-3 > > 443/tcp open https > > 2301/tcp closed compaqdiag > > 5999/tcp closed ncd-conf > > No exact OS matches for host (If you know what OS is running on it, see > > http://www.insecure.org/cgi-bin/nmap-submit.cgi). > > TCP/IP fingerprint: > > SInfo(V=3.00%P=i686-pc-windows-windows%D=7/11%Time=3F0E340C%O=443%C=20) > > TSeq(Class=TR%IPID=I%TS=100HZ) > > T1(Resp=Y%DF=Y%W=E000%ACK=S++%Flags=AS%Ops=MNWNNT) > > T2(Resp=N) > > T3(Resp=Y%DF=Y%W=E000%ACK=S++%Flags=AS%Ops=MNWNNT) > > T4(Resp=Y%DF=N%W=0%ACK=O%Flags=R%Ops=) > > T5(Resp=Y%DF=N%W=0%ACK=S++%Flags=AR%Ops=) > > T6(Resp=Y%DF > > =N%W=0%ACK=O%Flags=R%Ops=) > > T7(Resp=Y%DF=N%W=0%ACK=S%Flags=AR%Ops=) > > PU(Resp=N) > > Uptime 2.387 days (since Tue Jul 08 15:32:36 2003) > > Nmap run completed -- 1 IP address (1 host up) scanned in 367 seconds > > > ============================================================================ > > ================ > > > > O que vcs recomenda a mais para melhorar a seguran�a da minha rede? ex: > > snort , porsentry, etc > > > > Att, > > > > Alan Lopes > > > > _______________________________________________________________ > > Sair da Lista: http://www2.fugspbr.org/mailman/listinfo/fugspbr > > Historico: http://www4.fugspbr.org/lista/html/FUG-BR/ > > > > _______________________________________________________________ > Sair da Lista: http://www2.fugspbr.org/mailman/listinfo/fugspbr > Historico: http://www4.fugspbr.org/lista/html/FUG-BR/ > -- _______________________________________________________________ Sair da Lista: http://www2.fugspbr.org/mailman/listinfo/fugspbr Historico: http://www4.fugspbr.org/lista/html/FUG-BR/
