Penetration Testing mailing list archives

Re: XP Personal Firewall

From: Jonathan Bloomquist <bocasolutions () yahoo com>
Date: Fri, 16 Aug 2002 05:54:49 -0700 (PDT)


--- Jeremy Junginger <jjunginger () interactcommerce com>
wrote:

I've come across a few XP hosts that are trying to
be sneaky with the
"Internet Firewall" feature enabled.  I've seen
responses from NMAP SYN
and ACK scanning while seeing next to nothing on
Nessus.  Also, I am
unable to uncover any additional information about
the hosts and
available services.  Do you have any tips on beating
the XP "firewall?"
Perhaps there is a post in the archives.

-Jeremy


I don't have access to an XP personal firewall to try
it, but you might try specifying a source port for the
scan using nmap's -g switch.  If the firewall doesn't
keep state, you can probably SYN scan through port 20,
21, 53, etc.

=====
Jonathan Bloomquist, CISSP

__________________________________________________
Do You Yahoo!?
HotJobs - Search Thousands of New Jobs
http://www.hotjobs.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Current thread:

XP Personal Firewall Jeremy Junginger (Aug 15)
- Re: XP Personal Firewall Jonathan Bloomquist (Aug 16)
- Re: XP Personal Firewall Mike Arnold (Aug 19)
- <Possible follow-ups>
- Re: XP Personal Firewall Mike Arnold (Aug 19)