From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1JFGC6-00083C-EA for garchives@archives.gentoo.org; Wed, 16 Jan 2008 21:53:10 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5B607E0AA9; Wed, 16 Jan 2008 21:53:05 +0000 (UTC) Received: from creativecommunications.com (creativecommunications.com [65.17.124.162]) by pigeon.gentoo.org (Postfix) with ESMTP id 3FC4EE0AA9 for ; Wed, 16 Jan 2008 21:53:05 +0000 (UTC) Received: from [192.168.1.178] (unknown [192.168.1.178]) by creativecommunications.com (Postfix) with ESMTP id 4C32868C055 for ; Wed, 16 Jan 2008 15:53:04 -0600 (CST) Message-ID: <478E7CBB.2040409@gentoo.org> Date: Wed, 16 Jan 2008 15:52:59 -0600 From: Andrew Gaffney User-Agent: Thunderbird 2.0.0.9 (X11/20071228) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-server@lists.gentoo.org Reply-to: gentoo-server@lists.gentoo.org MIME-Version: 1.0 To: gentoo-server@lists.gentoo.org Subject: Re: [gentoo-server] how to stop tracing References: <478E7674.4020401@ucmd.zapto.org> In-Reply-To: <478E7674.4020401@ucmd.zapto.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: 99e90bc4-fe2f-4a54-8a86-0d9fc9ac840c X-Archives-Hash: bf1ff6ab0d1d8b4403e25539811e7512 Christopher Dale wrote: > widyachacra wrote: >> Dear List friends, >> >> When i scan my own domain from an out side host using 'nmap' tool it shows >> following results. How do i block this kind of tracing using linux. Please >> help me. >> >> nmap tracing result, >> >> PORT STATE SERVICE VERSION >> 25/tcp open smtp netqmail smtpd 1.04 >> 53/tcp open domain >> 80/tcp open http Apache httpd 2.2.6 ((Gentoo)) >> 110/tcp open pop3 Courier pop3d >> 119/tcp open ssh OpenSSH 4.7 (protocol 2.0) >> 209/tcp open tam? >> 443/tcp open http Apache httpd 2.2.6 ((Gentoo)) >> 628/tcp open tcpwrapped >> 993/tcp open ssl/imap Courier Imapd (released 2005) >> 995/tcp open ssl/pop3 Courier pop3d >> >> >> > Hi Widyachacra, > > Great question and one that I have had in the past also. In a previous > post to the gentoo mailing list, someone suggested that port knocking be > used as a means of securing through obscurity. After looking at it > (http://www.portknocking.org), I've found that it's a wonderful means to > a personal server's security when exposed to the world wide web. > > All the best in your attempts to obfuscate your server's open ports! :) Unfortunately, this *only* works when it's a private server. This is not an acceptable solution on a server accessed by the "public". -- Andrew Gaffney http://dev.gentoo.org/~agaffney/ Gentoo Linux Developer Catalyst/Installer + x86 release coordinator -- gentoo-server@lists.gentoo.org mailing list