Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Nmap Development: OT: Desktop Firewalls WAS: Nmap says hosts unreachable

OT: Desktop Firewalls WAS: Nmap says hosts unreachable

From: Craig Humphrey <Craig.Humphrey_at_chapmantripp.com>
Date: Wed, 6 Oct 2004 09:15:55 +1300

Hmmm.. Funny that... And just how do you improve the security on say, a
laptop that uses WiFi, Dial-up and Ethernet connections? Pretty hard to
squeeze a hardware based firewall in there...

And isn't it interesting that the Linux community has headed down the
same path, since most recent distro's of Linux contain some form of
"software" firewall (ipchains, iptables, etc).

OK, so the Windoze community are often bleating, but that's more to do
with their lack of technical knowledge, than the failings of software
firewalls.

Then again, hardware firewalls tend to have all the same failings as
software ones, except for one thing, the underlying "OS" tends to be
known quantity to the vendor (the likes of CheckPoint often being the
exception, but Oh, that would make it a software firewall... :)

At least if Windoze users are installing firewalls (software or
otherwise), that's got to put things in a slightly better light than
before.

Oh and I don't include the Windows Internet Connection Firewall in any
of the above statements. A "firewall" that doesn't account for outbound
and allows any M$ application to do whatever it likes (in terms of
opening ports) without telling the user, isn't a firewall at all.

</rant>

Later'ish
Craig

> -----Original Message-----
> From: Cemil Degirmenci [mailto:cd_at_wavecon.de]
> Sent: Tuesday, October 05, 2004 9:50 PM
> To: Craig Humphrey; nmap-dev_at_insecure.org
> Subject: Re: Nmap says hosts unreachable
>
> Hi there,
>
> Craig Humphrey wrote:
>
> > You probably need to set up ZoneAlarm so that nmap can push packets
> > through it and then receive the responses back.
> >
> > I had a similar problem with TinyFirewall.
> >
> >>I'm running an XP home machine with service pack 1. I have a
> >>zonealarm firewall and a linksys wrt54g router. No matter
> >>what host I scan nmap always says that the host is down. Even
> >>scanning pcs on my lan or my own wan ip I get the same result.
> >>When I ran nmap with my bsd system it worked fine. I
> >>followed the install on insecure.org but I just can't get nmap
> >>to work. Any suggestions? Thanks!
>
> Think about sence and nonesence of personal Desktop Firewalls. But
> forget the part with "those people are Idiots" ;)
>
> http://www.fefe.de/pffaq/
>
>
> --
> kind regards / Mit freundlichen Gruessen,
>
> Cemil Degirmenci
> --
> Wavecon - professional IT Solutions GPG/PGP Key-ID:
> 0x67D5D458
> 90443 Nuernberg Tel.: +49 911 120 658 1
> Schanzaeckerstr. 43a Fax.: +49 911 212 92 33
> http://www.wavecon.de info@wavecon.de
>

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to
nmap-dev-help@insecure.org . List archive: http://seclists.org
Received on Oct 05 2004

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos