Firewall Wizards mailing list archives

Re: source port specific port scan

From: "Steven M. Bellovin" <smb () research att com>
Date: Sun, 14 Oct 2001 11:21:54 -0400

In message <20011012213339.9420.qmail () web12302 mail yahoo com>, Rich Wilson wri
tes:

Does anyone know of a port scanner that allows you to specify the source port?

I'm trying to test a filter that allows outbound only SMTP.  My worry is that
it is not stateful, and that an attacker using a source port of 25 can bypass
the filter.


Use the -g option to nmap.

                --Steve Bellovin, http://www.research.att.com/~smb
                Full text of "Firewalls" book now at http://www.wilyhacker.com


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Re: source port specific port scan, (continued)
- Re: source port specific port scan R. DuFresne (Oct 15)
- Re: source port specific port scan Barney Wolff (Oct 15)
- Re: source port specific port scan m p (Oct 15)
- Re: source port specific port scan Oscar Wahlberg (Oct 15)
- Re: source port specific port scan Charles Swiger (Oct 15)
- Re: source port specific port scan Jose Nazario (Oct 15)
  - Re: source port specific port scan Jose Nazario (Oct 15)
- Message not available
  - Re: source port specific port scan Dom Glavach (Oct 15)
- Re: source port specific port scan Ben Eisenbraun (Oct 15)
- RE: source port specific port scan robert_david_graham (Oct 15)
- Re: source port specific port scan Steven M. Bellovin (Oct 15)