Security Basics mailing list archives

Re: Any abuses on opening outbound port 43 tcp and udp

From: Nikhil Wagholikar <visitnikhil () gmail com>
Date: Fri, 13 Aug 2010 09:52:57 +0530

Hi Raja,

The threat is not from opening port 43 TCP/UDP on firewall, but from
the service and its in-secure configuration and security of the same.
For example, if one uses SNMP v2 with default community string and
accessible on Internet, but configured to use port 171 UDP instead of
161 UDP, is still vulnerable to information leakage and possible
threats ahead due to leaked information.

So here are few ideas:

1. Look for un-used non-standard TCP/UDP port to host the service
2. Configure the service to best secure level as possible.
3. If possible, restrict/limit the usage to users who really need the service
4. Use latest possible software version of the application.
5. Have defense in dept, may be through layered architecture.
6. Have strong authentication, authorization and accounting in place
as far as possible

Hope this helps!

---
Nikhil Wagholikar
Sr. Consultant
Ernst and Young
Mumbai, India
http://www.ey.com/


On 12 August 2010 12:59, Raja <raja1.it.consultant () gmail com> wrote:


Hi,

Does anybody know if there are any abuses on opening outbound port 43 tcp/udp?

More info: this port will be used as destination port by whois service to fetch domain registrar info.

Thanks.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

Any abuses on opening outbound port 43 tcp and udp Raja (Aug 12)
- Re: Any abuses on opening outbound port 43 tcp and udp John Morrison (Aug 12)
- Re: Any abuses on opening outbound port 43 tcp and udp Nikhil Wagholikar (Aug 13)
- Message not available
  - Re: Any abuses on opening outbound port 43 tcp and udp Raja (Aug 13)
    - Re: Any abuses on opening outbound port 43 tcp and udp Jeffrey Singleton (Aug 13)
- <Possible follow-ups>
- Re: Any abuses on opening outbound port 43 tcp and udp krymson (Aug 23)