On Thursday 05 August 2004 22:10, Dan Gordon wrote: > On Thursday 05 August 2004 09:06 pm, you wrote: > > You really have me confused now Dan :( Attached is my firewall.sh > > file from /etc/firestarter. To me it seems to have rules already > > in it. I turned iptables back on, checked at grc.com and its all > > the same, 21, 23, 80 open, rest closed. I've been trying to figure > > this out for as long as I've been running FS. Why won't a scan of > > my system show any stealth ports. Below is the output from > > grc.com: > > > > > > This textual summary may be printed, or marked and copied > > for subsequent pasting into any other application: > > > > ------------------------------------------------------------------- > >-- - > > > > GRC Port Authority Report created on UTC: 2004-08-06 at 01:04:18 > > > > Results from scan of ports: 0, 21-23, 25, 79, 80, 110, 113, > > 119, 135, 139, 143, 389, 443, 445, > > 1002, 1024-1030, 1720, 5000 > > > > 3 Ports Open > > 22 Ports Closed > > 1 Ports Stealth > > --------------------- > > 26 Ports Tested > > > > Ports found to be OPEN were: 21, 23, 80 > > > > The port found to be STEALTH was: 0 > > > > Other than what is listed above, all ports are CLOSED. > > > > TruStealth: FAILED - NOT all tested ports were STEALTH, > > - NO unsolicited packets were received, > > - A PING REPLY (ICMP Echo) WAS RECEIVED. > > > > ------------------------------------------------------------------- > >-- > > Chris, if you have just turned iptables back on did you reboot? it > might help, also did you re-run the firestarter wizard? this may also > help. All I have ever done was install iptables, then firestarter > and reboot, then run the wizard and it was all steath. I have > verified this config by stoping firestarter and scanning again to > find all closed, but thats all iptables will do by default unless > you give it some rules to go by. This is what firestarter is for an > easy way to create rules for iptables. As for your open ports it > looks like you have maybe installed a ftp server port 21 uses this > and apache web server port 80 uses this. And im not sure what port > 23 us used for, maybe someone else can help there. > and Cris please send you replies back to the list as it might be > helpfull to some one else as well. > > Regards, > Dan Gordon To identify port numbers try this: http://www.iana.org/assignment/port-numbers -- Regards; Hoyt Registered Linux user #363264 http://counter.li.org
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________