Re: What about closed ports?

To: debian-security@lists.debian.org
Subject: Re: What about closed ports?
From: Jeld The Dark Elf <jeld@mindless.com>
Date: Wed, 4 Jul 2001 14:21:18 -0400
Message-id: <[🔎] 20010704142118.G2707@mindless.com>
Mail-followup-to: Jeld The Dark Elf <jeld@mindless.com>, debian-security@lists.debian.org
Reply-to: Dmitriy Kropivnitskiy <jeld@mindless.com>
In-reply-to: <[🔎] 9D0B1828EA4DD411AD170050BAB3A0EB5DE33F@kodiak>
References: <[🔎] 9D0B1828EA4DD411AD170050BAB3A0EB5DE33F@kodiak>

On Wed, Jul 04, 2001 at 10:56:09AM -0400, Nick Nanos wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> I'd be more worried about traffic on open ports that is MUXed i.e.
> telnet over port 80.
> 
You see, in order to do anything through port X ( 80 in your example ) you have 
to have a client ( for example telnet ) that initialises connection and a server
taht listnes for connection requests and answers them ( for example apache ). In 
any case if you have you ipchains rule say that any traffic through port 80 is DENYed
then you don't have to worry. And multiplexing is not helping the attacker it is helping you.

-- 
FRIEND: A member of the opposite sex in your acquaintance who has some flaw which makes sleeping with him/her totally unappealing.

Reply to:

References:
- RE: What about closed ports?
  - From: Nick Nanos <nick@itactics.com>

Prev by Date: RE: What about closed ports?
Next by Date: w3m on security.debian.org broken
Previous by thread: RE: What about closed ports?
Next by thread: Where to put iptables script
Index(es):
- Date
- Thread