|
Post by Malagrond on Mar 10, 2011 9:06:24 GMT -6
One of the most common vulnerabilities is open ports. You have to leave open certain ports so applications will run properly and you will have access to the internet. To check for vulnerable ports, I recommend using nmap. You can find out your IP from whatismyip.com Run this command from the terminal to use nmap: nmap YOURIPHERE --open
From here, try using the following to determine what each port does: telnet YOURIPHERE OPENPORTHERE
You should see something called a "banner". This tells you what application is using the port, if any. If no application is using the port, it's safe to close. Before moving on, take note if the port (as listed by nmap) has tcp or udp after it. I'll refer to this as the PORTTYPE. To close a vulnerable port on *nix, run the following: fuser -k PORTHERE/PORTTYPE
Hope this helps!
|
|