Quote:
Originally Posted by SnoopZ
Mine is also open, most other ports are stealth as they should be though. Not sure why i have several showing as closed, i need to look into this.
|
Most likely a SH2 thing then, though interesting your ports seem to differ to mine regards stealth etc. With the SH2 firewall set to off, every single port in the first 1024 was simply closed except for 53, which was open. Once the firewall went onto low the pattern posted above applied. Cheers for the reply.
As for the whole stealth v closed thing though, it's not really as big a deal as is made out at times. Or at least if you listen to Kaspersky et al. who stopped their firewall 'stealthing' ports in 2009.
They argue (and I would agree) that a 'stealthed' system is the opposite of invisible. If you ping/telnet/whatever a node on the internet standard network protocol dictates you get a 'pong'/reply, or else a 'host unreachable' if it doesn't exist. With a 'stealth' machine the ping is simply dropped silently; automatically, therefore, confirming that there is a machine but that it's refusing to answer either way.
Some info.
Some more.
Better to have all unneeded ports closed properly and secured with a good hardened firewall (ideally a decent hardware appliance like IPFire, pfSense, etc but at least be behind NAT and have a reputable software firewall on top). I digress.
