Security Basics mailing list archives

Re: Scanning--more then one side to the argument

From: Steven DeFord <security.willworker () gmail com>
Date: Mon, 4 Apr 2005 16:41:30 -0700

On Apr 1, 2005 7:11 AM, Steve <securityfocus () delahunty com> wrote:

I know of hosting providers that filter ports properly, will not allow in
port scans, block pings, etc -- they block that at the border through their
security architecture.  So that would keep some attackers from knowing that
certain ports are actually open.  But of course the ports are truly open,
how else would one run a web server that you want the public to hit without
port 80 open?


You can't.  Your ISP can't block only attempts to do something nasty
and not things that are benign.  If port 80 is blocked to portscans,
it'll be blocked to web page requests too.


-- 
Steven DeFord
Security.Willworker () gmail com
(925) 596-0426

---------------------------------------------------------------------------
Earn your MS in Information Security ONLINE
Organizations worldwide are in need of highly qualified information security 
professionals.  Norwich University is fulfilling this demand with its MS in 
Information Security offered online.  Recognized by the NSA as an 
academically excellent program, NU offers you the opportunity to earn your 
degree without disrupting your home or work life.

http://www.msia.norwich.edu/secfocus_en
----------------------------------------------------------------------------

Current thread:

RE: Scanning--more then one side to the argument David Gillett (Apr 04)
- <Possible follow-ups>
- Re: Scanning--more then one side to the argument Antonio Weber (Apr 04)
- Re: Scanning--more then one side to the argument Steven DeFord (Apr 04)
- Re: Scanning--more then one side to the argument Steve (Apr 04)
  - Re: Scanning--more then one side to the argument Steven DeFord (Apr 04)
- Re: Scanning--more then one side to the argument routerg (Apr 04)