Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: RE: Server blocks access of IP after nmap scan

From: amon.amarth9 () gmail com
Date: Wed, 18 May 2011 15:18:18 -0600
Nice explained. Anyway, the problem is that although this can be effective defense structure, when not configured 
properly it can block legitimate users too. In this specific case, not only scanning request or aggressive port probe, 
but a simple ICMP packet or any kind of connection to any port other than 80 (and thanks to my research, now 21 too) 
will put your ip address on the black list and every packet you send since then will be dropped. It's irrational to 
block legitimate services for a specific user only because he/she pinged the server and it's not as effective security 
protection as it seems like, because after all i got the results from the port scan using some tweaks on nmap. Security 
is much more than that.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: