NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > SuSE Linux> 2002-q3

From: Peter Wiersig (wiersig-ml_at_dns.glamus.de)
Date: Mon Aug 05 2002 - 02:43:17 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Florian Schießl wrote:
>
> When I close the whole Server whith iptables, the portscanner says the
> same.
>
> Iptables -P INPUT DROP
> Iptables -P OUTPUT DROP
>
> The scanner says, that pop,smtp,http,... And the other mentioned ports
> are open? Häh?

Understand your portscanner.

If your utility expects a tcp-reset packet after a syn-packet to a
closed port, your DROP-rules cause the scanner to misreport the
open ports list.

Peter

-- 
To unsubscribe, e-mail: suse-security-unsubscribesuse.com
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]