Quote:
Originally Posted by
pludi
First, what's the "Stealth Up" test? Never heard of it.
Second, how can Port 80 show up "closed" if it's explicitly opened (line 3)?
Third, unless this is your home box I'd leave the SSH port open, too.
You are totally right. There's some typos at my post.
"First, what's the "Stealth Up" test? Never heard of it."
What I wanted to mean is a test under (or linked by) "grc dot com". They call it the "Shields up!" One of the services they offer, as per the user choice, is a scan of "all service ports" under the IP number of that user. Ok. I'm sure you got it now.
Following my IP number "being carefully examined", from ports 0 to 1055, the results were: "Failed"
because:
1 - "Solicited TCP Packets: RECEIVED (FAILED) - As detailed in the port report below, one or more of your system's ports actively responded to our deliberate attempts to establish a connection. It is generally possible to increase your system's security by hiding it from the probes of potentially hostile hackers. Please see the details presented by the specific port links below, as well as the various resources on this site, and in our extremely helpful and active"
BUT:
2 - "Unsolicited Packets: PASSED - No Internet packets of any sort were received from your system as a side-effect of our attempts to elicit some response from any of the ports listed above. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system remained wisely silent. (Except for the fact that not all of its ports are completely stealthed as shown below.)."
3 - "Ping Echo: PASSED - Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests) from our server."
AND
This is the written report from the test:
GRC Port Authority Report created on UTC: 2010-08-13 at 02:17:11
Results from scan of ports: 0-1055
0 Ports Open
1 Ports Closed
1055 Ports Stealth
---------------------
1056 Ports Tested
NO PORTS were found to be OPEN.
The port found to be CLOSED was: 80
Other than what is listed above, all ports are STEALTH.
TruStealth: FAILED - NOT all tested ports were STEALTH,
- NO unsolicited packets were received,
- NO Ping reply (ICMP Echo) was received.
SO...
As per the above written report, I hope it's clear now why I would like to find a way to have port nº 80 to be shown as "stalth" (of course, if possible and still keeping the possibility to surf the net).
Do you think is better not to care about this people at "grc" and try to find a better way to assure that my system is hardened enough?
ps: pludi: regarding port 80, yes, this is my home box.