----- Original Message -----
From: "Mike Chambers" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, July 20, 2001 6:35 PM
Subject: Re: IPTABLES & Ports
> ----- Original Message -----
> From: "Markku Kolkka" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Friday, July 20, 2001 12:32 PM
> Subject: Re: IPTABLES & Ports
>
>
> > On Friday 20. Julyta 2001 19:17, you wrote:
> > > I have set-up the firewall on a DNS server to HIGH & only open the UDP
> > > port, but when I ask www.hackerwatch.org/probe to probe the system it
> > > states that the following ports are open ! 21,23,25,80,110,139,143,443
> > > Is this correct and to be expected ?
> >
> > No, absolutely not. You shouldn't have telnet, FTP, WWW, mail and SMB
> servers
> > running on a machine supposed to be a DNS server.
> >
> > Are you sure the scan was on _your_ machine, not on your ISP's firewall?
> Did
> > you check the IP address reported by the scanner?
>
> I ran that test from the above mentioned port testing site and it found my
> proxy server not my own IP so I wouldn't trust that test. Try grc.com and
> shieldsup or get strobe program from powertools cd and just run strobe
> localhost and it will tell you what ports are open.
>
> Mike
>
I agree, of the sites I tried (grc.com, hackerwhacker.com, secure-me.net)
this was the only site which listed the ports as open. I have a firewall set
up with ipchains (Monmotha's script) and the other sites list that the ports
don't even exist. It does list the ip address of the firewall.
Keith Alan Landry
www.wirewizards.com
www.twelfthofnever.com
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
