"Stealth up" port 80 Post: 302444801

Sponsored Content

Special Forums Cybersecurity "Stealth up" port 80 Post 302444801 by wiluni on Thursday 12th of August 2010 10:25:27 PM

08-12-2010

Registered User

"Shields up" port 80

Quote:

Originally Posted by pludi

First, what's the "Stealth Up" test? Never heard of it.
Second, how can Port 80 show up "closed" if it's explicitly opened (line 3)?
Third, unless this is your home box I'd leave the SSH port open, too.

You are totally right. There's some typos at my post.

"First, what's the "Stealth Up" test? Never heard of it."
What I wanted to mean is a test under (or linked by) "grc dot com". They call it the "Shields up!" One of the services they offer, as per the user choice, is a scan of "all service ports" under the IP number of that user. Ok. I'm sure you got it now.

Following my IP number "being carefully examined", from ports 0 to 1055, the results were: "Failed"

because:
1 - "Solicited TCP Packets: RECEIVED (FAILED) - As detailed in the port report below, one or more of your system's ports actively responded to our deliberate attempts to establish a connection. It is generally possible to increase your system's security by hiding it from the probes of potentially hostile hackers. Please see the details presented by the specific port links below, as well as the various resources on this site, and in our extremely helpful and active"

BUT:
2 - "Unsolicited Packets: PASSED - No Internet packets of any sort were received from your system as a side-effect of our attempts to elicit some response from any of the ports listed above. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system remained wisely silent. (Except for the fact that not all of its ports are completely stealthed as shown below.)."
3 - "Ping Echo: PASSED - Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests) from our server."

AND
This is the written report from the test:
GRC Port Authority Report created on UTC: 2010-08-13 at 02:17:11
Results from scan of ports: 0-1055
0 Ports Open
1 Ports Closed
1055 Ports Stealth
---------------------
1056 Ports Tested
NO PORTS were found to be OPEN.
The port found to be CLOSED was: 80
Other than what is listed above, all ports are STEALTH.

TruStealth: FAILED - NOT all tested ports were STEALTH,
- NO unsolicited packets were received,
- NO Ping reply (ICMP Echo) was received.

SO...
As per the above written report, I hope it's clear now why I would like to find a way to have port n� 80 to be shown as "stalth" (of course, if possible and still keeping the possibility to surf the net).
Do you think is better not to care about this people at "grc" and try to find a better way to assure that my system is hardened enough?

ps: pludi: regarding port 80, yes, this is my home box.

Last edited by wiluni; 08-13-2010 at 03:30 AM.. Reason: title plus aesthetics + corrected ... BUT 2-

wiluni

View Public Profile for wiluni

Find all posts by wiluni

8 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Explain the line "mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'`"

Hi Friends, Can any of you explain me about the below line of code? mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'` Im not able to understand, what exactly it is doing :confused: Any help would be useful for me. Lokesha

2. Shell Programming and Scripting

cat $como_file | awk /^~/'{print $1","$2","$3","$4}' | sed -e 's/~//g'

hi All, cat file_name | awk /^~/'{print $1","$2","$3","$4}' | sed -e 's/~//g' Can this be done by using sed or awk alone

3. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone...

4. Shell Programming and Scripting

how to use "cut" or "awk" or "sed" to remove a string

logs: "/home/abc/public_html/index.php" "/home/abc/public_html/index.php" "/home/xyz/public_html/index.php" "/home/xyz/public_html/index.php" "/home/xyz/public_html/index.php" how to use "cut" or "awk" or "sed" to get the following result: abc abc xyz xyz xyz

5. Solaris

The slices "usr", "opt", "tmp" disappeared!!! Help please.

The system don't boot. on the screen appears following: press enter to maintenance (or type CTRL-D to continue)...I checked with format command. ... the slices "0-root","1-swap","2-backup" exist. ...the slises "3-var","6-usr" -unassigned. :(

6. UNIX for Dummies Questions & Answers

Using "mailx" command to read "to" and "cc" email addreses from input file

How to use "mailx" command to do e-mail reading the input file containing email address, where column 1 has name and column 2 containing �To� e-mail address and column 3 contains �cc� e-mail address to include with same email. Sample input file, email.txt Below is an sample code where...

7. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing...

8. AIX

Apache 2.4 directory cannot display "Last modified" "Size" "Description"

Hi 2 all, i have had AIX 7.2 :/# /usr/IBMAHS/bin/apachectl -v Server version: Apache/2.4.12 (Unix) Server built: May 25 2015 04:58:27 :/#:/# /usr/IBMAHS/bin/apachectl -M Loaded Modules: core_module (static) so_module (static) http_module (static) mpm_worker_module (static) ...

LEARN ABOUT OSF1

port_names

ports(7)						 Miscellaneous Information Manual						  ports(7)

NAME

       ports, port_names - Device (tty and lp) names for serial and parallel ports

SYNOPSIS

       Default Serial Ports:

       /dev/tty00
       /dev/tty01 (not present on a single-port system)

       Parallel Port:

       /dev/lp0

DESCRIPTION

       AlphaStation  and AlphaServer systems provide one or two 9-pin serial communication ports. These ports are usually labelled 1 (COMM1) and 2
       (COMM2), but they may be identified by different icons.	Using the appropriate serial cable  and  terminator,  you  can	connect  a  serial
       printer,  external  modem, or character-cell terminal to a serial port. Most AlphaStation and AlphaServer systems also provide one parallel
       port, for use with a parallel printer.

       When you add a device to your system, the installation documentation may instruct you to map  the  device  pathname  to	the  port.   These
       devices are located in the /dev directory.

       For  serial-line  ports, the two default device pathnames are: This pathname always maps to 1, COMM1, the lowest port number, an icon for a
       terminal console, or the only serial port (on a single-port system).  This pathname always maps to 2, COMM2, the next numbered port, or (if
       one serial port is labeled with an icon for a terminal console) the remaining serial port.

       If  your system hardware has been extended to include additional serial ports, the pathnames /dev/tty02, /dev/tty03, and so forth, may also
       be available to you. However, most systems have only /dev/tty00 and /dev/tty01 as the device pathnames for serial ports.

       The one parallel port on an AlphaStation or AlphaServer may be labeled with the word printer or a printer icon. On some systems, the paral-
       lel  port may not be labeled.  The device pathname for the parallel port is /dev/lp0. Currently, Tru64 UNIX does not fully support parallel
       printers, so fewer devices are connected to this port as compared to serial ports.

       If you are connecting a terminal console to your system, it must be connected to the serial port mapped to  /dev/tty00.	For  other  serial
       devices,  it does not matter which of the serial ports you choose for the connection. For example, suppose you are setting up a system that
       has two serial ports, labeled 1 and 2. You intend to use a serial-line terminal rather than a workstation monitor as the system console and
       also  want  to  connect	a  serial-line	printer to the system. In this case, you must connect the terminal to the port labeled 1 (with the
       device pathname /dev/tty00). Therefore, you must connect the printer to the remaining port labeled 2 (with the device pathname /dev/tty01).

       If, for the same type of system, you intend to use a workstation monitor as the system console, it does not matter which  serial  port  you
       use  for  a serial-line printer or modem. In other words, you can connect the printer to either port 1 (with pathname /dev/tty00) or port 2
       (with pathname /dev/tty01).  When prompted to enter a /dev/tty** pathname by the lprsetup script or the Print configuration tool in the CDE
       Application Manager, you would specify /dev/tty00 if you connected the printer to port 1 or /dev/tty01 if you connected the printer to port
       2.

       See the System Administration manual for more information on setting up	consoles  (including  remote  consoles)  and  printers.   See  the
       modem(7) reference page for more information on setting up modems.

SEE ALSO

       Commands: lprsetup(8)

       Devices: ace(7), modem(7)

       System Administration delim off

																	  ports(7)