Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 22 replies
  • Subscribers 2 subscribers
  • Views 31171 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

"Closed" not "Stealthed" ports

YuppieScum
Guys,

I've just deployed ASL on my ADSL connection at home, and I'm very with one exception.

I've used the "Shields Up" service at Steve Gibson's GRC site, and while it shows most ports as "stealthed", the ports 21 (FTP), 80 (HTTP) and 139 (IDENT) are reported as being "closed".

How do I change the config of ASL to drop incoming packets on these ports too?


This thread was automatically locked due to age.
  • 0 in reply to Fuckitznukin
    I suggest the use of a secured linux box off-site that you use to scan networks and hosts that you wish to audit. This is how I check the status of my configuration changes.

    You can't trust grc or other sites as well as yo can a good nmap scan that you do yourself.

     [:)]

    [ 20 January 2002: Message edited by: danielrm26 ]

  • 0 in reply to danielrm26
    An attacker uses those "Closed Ports" as  enumeration.

    Anyone who runs a halfscan can see that
    the firewall is a Linuxbox.

    Astaro make this FW 100% Stealth!.
Unfiltered HTML