Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 17 May 2000 14:11:25 +0530
From:      Rahul Siddharthan <rsidd@physics.iisc.ernet.in>
To:        Mark Ovens <mark@dogma.freebsd-uk.eu.org>
Cc:        questions@FreeBSD.ORG
Subject:   Re: Is port scanning a problem?
Message-ID:  <20000517141125.A79652@physics.iisc.ernet.in>
In-Reply-To: <20000516203849.A1491@parish>; from mark@dogma.freebsd-uk.eu.org on Tue, May 16, 2000 at 08:38:49PM %2B0100
References:  <20000516203849.A1491@parish>
next in thread | previous in thread | raw e-mail | index | archive | help 
> My ISP's support newsgroup has lots of threads about "port scanning".
> Most of the people there are Windozers and since I've never heard any
> mention of it here I assume that it is a Windows vulnerability and not
> an issue if I connect only from FreeBSD. Is this correct?
> 
> I checked out Steve Gibson's site (http://wrc.com) which has a test
> program to check the vulnerability of your machine. The only thing
> that showed up in my logs when I ran this was in /var/log/messages:
> 
> May 16 20:23:18 parish inetd[96]: /usr/libexec/fingerd[1438]: exit status 0x100

Port scanning just means checking by brute force which ports are open
on your machine, afaik.  The portscanner you ran probably tried the
fingerd port too -- every time someone fingers someone on your machine
from outside you'll get that message in /var/log/messages.

Again, afaik, it is an issue only in that the services you run (httpd,
ftpd, sendmail etc) could have security problems which could enable an
attacker to get root access. Many machines have a lot of services
enabled by default which you don't really need. A portscanner will
tell you which ports are open on your machine so that you can close
everything non-essential.  You should portscan your machine before
an attacker does.

If there's more to it than that, maybe someone else will tell you
about it...

R.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000517141125.A79652>