Penetration Testing mailing list archives
RE: Changing Source Port during Penetration Testing?
From: "Michael Scheidell" <scheidell () secnap net>
Date: Sun, 5 Nov 2006 08:02:22 -0500
-----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of 09sparky () gmail com Sent: Saturday, November 04, 2006 11:58 AM To: pen-test () securityfocus com Subject: Changing Source Port during Penetration Testing? Question for PenTester, Do most of you attempt to change the source port during a standard external Penetration Test/Vulnerability Assessment as part of your standard practice? If so, how often do you find routers/firewalls that allow for instance port 80, 53, 25, etc allowing you to forward traffic?
A long time ago, in a galaxy far away, there lived 'port filtering' firewalls. These port filtering firewalls did not know about outgoing data (mostly ftp and udp) and needed help. 'Wizards' configured these port filtering firewalls to allow anything with TCP source port 20 back in, and anything with UDP source port 53 back in. I seriously doubt you will find many of these old firewalls in our current galaxy. ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
Current thread:
- Changing Source Port during Penetration Testing? 09sparky (Nov 04)
- <Possible follow-ups>
- RE: Changing Source Port during Penetration Testing? Michael Scheidell (Nov 05)
- Re: RE: Changing Source Port during Penetration Testing? emptybeerkann (Nov 07)
- Re: RE: Changing Source Port during Penetration Testing? Gadi Evron (Nov 07)
- Re: RE: Changing Source Port during Penetration Testing? Jamie Riden (Nov 07)
- Re: Changing Source Port during Penetration Testing? warl0ck (Nov 09)