If I have a stealth port and an attacker pings that port they'll sit there for 30 seconds or however long and then realize they aren't getting anything back. I guess I do not understand TCP/IP. · actions · 2013-Oct-30 7:41 am · Woody79_00I run Linux am I still a PC?Premium Memberjoin:2004-07-08united state
I've been down that road and it is not fun. Monitor Purchase SpinRite FAQ Demo Videos Knowledgebase: SATA Knowledgebase: BIOS SpinRite v5.0 pages ShieldsUP! If the company decided a RST is just as good as "stealth" and thus the hole in the firewall allows everything to that IP through, the attacker then gets a RST scan from XP, my Win7 rig was powered off. http://www.sevenforums.com/system-security/344477-non-stealthed-ports-no-matter-what.html
would have you believe.2ndly, if you're that concerned, start logging the hits on your PC's firewall. I've port forwarded in several different ways (i.e 27000-27050, ALL or 27015, ALL) and neither work - every port scanner shows "Closed" or "Stealth". So can you explain how "stealth" helps? If this is NOT what you intend, if you are not deliberately operating Internet servers and offering services to the public, then you should work to determine the source of the
Frey 0 5 Jan 2002 5:23 AM In reply to YuppieScum: Undermostcircumstancesyouarebetteroffrejectingport113ratherthandroppingit-ifyouareahomeuser.ThereasonforthisisthatwhenyoutrytousePOPandSMTPtheserveronthefarendoftensendsanIDENT(113)packettoyourmachinebeforecompletingtherequest.Ifyoudrop,youhavetowait,ifyoureject,themachineontheotherendassumesthatyouarenon-unixanddonotsupportIDENTanditstopsaskingandmovesontothebusinessathand.BusinessusersmightnotbequiteasworriedbythissincetheyaremorelikelytobeusingtheSMTPrelayfunctionandmanagingtheirownemailsystems. > Sophos Footer T&Cs Help Cookie Info Contact Support © 1997 - 2017 Sophos Ltd. Solution 4: If 25565 does not work, try another port! That's very cool. Udldempec Status All rights reserved.
Logged CherMas Newbie Posts: 4 Re: Port 0 and Port 1 not "stealth" « Reply #10 on: March 24, 2011, 05:26:07 PM » Black_ice_Spain wrote:Quote from: Black_ice_Spain on March 23, 2011, What Is A Stealth Port This is an unfortunate result of Microsoft's policy of turning everything "on" in the system in case it might be required even if it's not required and even if Routers on a route should use ICMP if the they are blocking the packets. In my personal experience, this is not true.
for some reason no matter what i do i cant get my ports to stealth with Comodo or Outpost i recently changed some settings in services and Anti-Spy is there anything Udld Empty Echo Reply insanitybit says: February 7, 2014 at 6:52 pm I assume they're just not thinking straight. My point is that having a machine respond with a RST tells an attacker there is an active machine there (whereas "stealth" cannot be distinguished from no machine at that address) All rights reserved.
And if someone does get past whatever gateway/router you're behind, they'll then encounter your software firewall. Of course, Stealth or Closed, still gotta keep firmware updated on the firewall itself.I always say, "The lack of a response is a response in itself" sometimes, its best to hide Those (3) solutions should be able to help you. Logged Print Pages:  Go Up The Comodo Forum > Security Products & Services > Comodo Internet Security - CIS > Help - CIS > Firewall Help - CIS > Port How To Unstealth A Port
Completely stealthed on both platforms.Tryed to emulate original conditions by turning off the Win7 rig, and ran scan on XP but no change - still all stealthed. When you are using Telnet, TCP RST causes "connection refused" error while stealth (no responses) causes a long wait and "connection timed out" error. · actions · 2013-Oct-30 1:33 pm · By the way, there is an instruction for you to troubleshoot. If your question is: "Should I stealth my ports?" my answer is: "Don't bother." Here's a tip - stop making security a matter of whether the attacker knows you're there and
Keeping Windows updated with all of the latest security patches is always a good idea, but even a fully patched Windows system STILL has many open ports creating opportunities for external Port Status Cisco Thanks! Nowhere -- since a closed port is just as exploitable as a filtered one.I think TheWiseGuy is right in that it's a matter of personal preference.
Those ports are still safe from network intrusion. · actions · 2013-Oct-31 7:15 am · mackeyPremium Memberjoin:2007-08-20351.8 21.7
The company has a firewall that blackholes (stealth) all IPs except for the servers they make available to employees in the field or who are working from home. They are only "closed". I'd appreciate it a lot. Nope.As i said, perhaps I misunderstand what your trying to say, and if i do, my apologies.
Well, not quite. Just having an IP address, by the very nature of TCP/IP connections, is a unique identifier. OPEN! Here's a short piece explaining the Stealth vs Closed port argument.