Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Firewall Wizards: Re: trusted & untrusted ports

Re: trusted & untrusted ports

From: Mikael Olsson <mikael.olsson_at_clavister.com>
Date: Mon, 10 Nov 2003 14:34:31 +0100

Hilal Hussein wrote:
>
> Q1 - How to identifiy trust vs untrusted ports. [...]

Recommended reading:

http://www.interhack.net/pubs/fwfaq/#SECTION00094000000000000000
- C.4 How do I determine what service the port is for?
- C.5 What ports are safe to pass through a firewall?

> Q2 - Reading some technical documents about accessing applications over the
> net, I noticed that sometimes the connection is not a client/server
> technique, it could be through the http port, in other words, no need to
> open specific port in order to be able to access the net application from
> within our network coorporate since it is using the http port.

... but does that mean that it is _safe_?
(Hint: the answer lies in C.5, above) 

-- 
Mikael Olsson, Clavister AB
Storgatan 12, Box 393, SE-891 28 ÖRNSKÖLDSVIK, Sweden
Phone: +46 (0)660 29 92 00   Mobile: +46 (0)70 26 222 05
Fax: +46 (0)660 122 50       WWW: http://www.clavister.com
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Received on Nov 11 2003
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos