Security Basics mailing list archives

RE: TCP/IP Port Security

From: "Burton Strauss" <Burton () FelisCatus org>
Date: Tue, 18 Oct 2005 16:37:50 -0500

You might as well go out and jump off a bridge right now.  It will be much
less painful.

Quite apart from 100s of 'protocols' using unassigned ports, you also need
to remember the 'any random port' class of protocols, from ftp through CORBA
right up to today's VoIP usage.

The canonical list is maintained by iana (http://www.iana.org), but that's
at best a minimal start.

-----Burton 

-----Original Message-----
From: rchdynasty () msn com [mailto:rchdynasty () msn com] 
Sent: Tuesday, October 18, 2005 10:20 AM
To: security-basics () securityfocus com
Subject: TCP/IP Port Security

My company is currently looking to develop a port registry and cataloging
process. All TCP ports will be required to be cataloged (Dynamic or
Private/Registered/Well Known). All platforms will be addressed since we use
various platforms.
My question is what would be the most effect way to develop this process.
I'm also looking for websites for reference.

Current thread:

TCP/IP Port Security rchdynasty (Oct 18)
- Re: TCP/IP Port Security Jay Taylor (Oct 18)
- RE: TCP/IP Port Security Burton Strauss (Oct 18)
  - Re: TCP/IP Port Security Kurt (Oct 21)
- Re: TCP/IP Port Security ilaiy (Oct 18)
- Re: TCP/IP Port Security Alloishus BeauMains (Oct 18)