I can't run that app at work - I'll have to do it later tonight while
I'm at home, but usually those online checkers offer a quick port scan
report only. They don't check for open UDP ports, nor do they check
whether your firewall does stateful inspection of packets. If you know
that your firewall is stateful, then you're one step further. But if
you're unsure - you need to find out. Some firewalls are not stateful by
default but can be enabled by the owner. But please don't believe that
you are safe because you own a spiffy firewall. Security is multi level:
from the user, OS, application, network, and firewall, you should have
proper guards at all levels. A firewall won't block a user initiated web
app from loading a virus that spreads internally to all the unsecured
machines behind the firewall.
You may have a big dead-bolt on your door, but I have a chainsaw. That's
why you also have a big dog and a shotgun!
-Ben
Bob Cortez wrote:
> Well John, that sounds great... I think. It's waaay over my head though.
> Are there any white hat hackers in the group that would like to take a shot
> at compromising my network? I used the "Shields Up" on-line utility from
> Gibson Research Corporation http://www.grc.com/default.htm and passed with
> flying colors. The problem is, I don't know if I should trust the results,
> because I don't know enough about security issues to know if it tests the
> right things or what other ports I should be concerned with.
>
> Thanks for all the input. This has been a very educational project for me.
>
> Bob
>
>
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org>
> with 'unsubscribe' in the message body.
>
>
>
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Thu Feb 21 15:48:42 2008
This archive was generated by hypermail 2.1.8 : Thu Feb 21 2008 - 15:48:43 AKST