Re: [newbie] pmfirewall and portsentry test?

Tue, 12 Sep 2000 20:50:08 -0700 

OK, I keep repeating myself, but it doesnt seem to do much good... so one
more time and I'm through:

www.grc.com is a decent site, and I'm not trying to knock it, but for linux
it doesn't hold much validity. It is a site for WINDOWS security, and tests
machines as though they are Windows boxes. This means that would-be open
linux hacks will not be tested for.

It is better to set up your firewall and portscan detection, and go to
www.hackerwhacker.com. No, I do not get any kick-back...The first scan is
free--it IS a rough scan, however. And... it may work your hard drive for an
hour or two if you have lots of logging turned on. Of course, if you have
portsentry running, you may wish to put their IP address in the
portsentry.ignore file temporarily so that you actually get the scan report
when they're finished. Portsentry will can their IP quite rapidly.

grc.com gives a false sense of security to linux users as it usually says
"There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists
at this IP address!" It can only detect one of my ports open, and I already
know it's open! But what it cannot detect, is that I also have portscan
detection bound and listening to linux's vulnerable ports ready to lock out
anyone who tries to poke around in those areas. These bindings should show
open ports, but grc.com doesn't see them, because it doesn't test for them.

www.hackerwhacker.com uses an outside nmap scan, and doesn't have any
prejudices about which OS you're running, it'll hit you for whatever it can
find. Their paid services go even further, but you'll be surprised by the
ports it finds open after you've relied on grc.com.

--Greg

----- Original Message -----
From: "Ronald J. Hall" <[EMAIL PROTECTED]>

> Got to http://www.grc.com and they will attempt to probe you (in a
friendly
> manner). I mean, you don't have to marry them afterwards... ;-)
>
> Rob wrote:
> >
> > Hi,
> >
> > well,  I guess I got it up and running.  but I would like to make sure
that it
> > is up and running.   How do test it?   where do I look up the log file
to see
> > if pmfirewall is running.    OH yeah   got portsentry up and running,
how do
> > I test that?
> >
> > Rob
>
> --
>
>                                                                        /\
>
Dark><Lord
>                                                                        \/
>

 
______________________________________________________________________________
Vous avez un site perso ?
2 millions de francs à gagner sur i(france) !
Webmasters : ZE CONCOURS ! http://www.ifrance.com/_reloc/concours.emailif

Reply via email to