--- Jeremy Junginger <jjunginger_at_interactcommerce.com>
wrote:
> I've come across a few XP hosts that are trying to
> be sneaky with the
> "Internet Firewall" feature enabled. I've seen
> responses from NMAP SYN
> and ACK scanning while seeing next to nothing on
> Nessus. Also, I am
> unable to uncover any additional information about
> the hosts and
> available services. Do you have any tips on beating
> the XP "firewall?"
> Perhaps there is a post in the archives.
>
> -Jeremy
I don't have access to an XP personal firewall to try
it, but you might try specifying a source port for the
scan using nmap's -g switch. If the firewall doesn't
keep state, you can probably SYN scan through port 20,
21, 53, etc.
=====
Jonathan Bloomquist, CISSP
__________________________________________________
Do You Yahoo!?
HotJobs - Search Thousands of New Jobs
http://www.hotjobs.com
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Received on Aug 16 2002
Intro
