-
December 5th, 2001, 07:49 PM
#1
ICMP port 8
When performing a scan it seems that all the ports of my gateway server are stealthed except 8 (the port used for 'ping') Is this a vulnerability / security risk?
-
December 5th, 2001, 07:55 PM
#2
It is used by a protocol that basicly lets people check wether your computer is online or not. If that classifies as a security-risk to you, it is. If not, not.
-
December 5th, 2001, 07:56 PM
#3
It may be vulnerable to some DoS attacks.
-
December 5th, 2001, 08:00 PM
#4
Thanks
thanks, I did knew the use of ping to see if a computer is present or not and the risk of a DoS, I was just wondering if there are other much higher risks to be worried about with that port open...
-
December 5th, 2001, 09:05 PM
#5
Member
If your personal firewall allows, set it to notify you whenever you recieve a ping, and better still, set it to ask you whether or not to respond to that ping.
Ah well...I\'m back on AntiOnline!
-
December 6th, 2001, 01:07 AM
#6
Usually it isn't a problem. I would say to leave it unblocked unless you find you are having problems with people trying to ping you a lot. If you block it up, however, don't be surprised if some applications start to do weird things, such as online games. (Some of them use their own timing scheme over UDP, etc, but you never know.)
Short version: Shouldn't be a problem. The worst they can probably do is just slow down your connection/comp, in which case you just pull the phone-wire out and block the port and return.
[HvC]Terr: L33T Technical Proficiency
-
December 6th, 2001, 11:51 AM
#7
Ok Terr
Thankz
I will leave the port open for some progs and games, but keep an eye on the ping requests on that gateway.
-
December 7th, 2001, 07:18 PM
#8
For most multiplayer games, they don't require a 'positive ping' to initiate a connection from either the server or other computers, only an open port through to the other side. Ping is something I configured through ipchains (and I'll post my configs for this) so that I can ping out, but nobody else can ping me. This keeps my machine "off the net" according to most programs.
We the willing, led by the unknowing, have been doing the impossible for the ungrateful. We have done so much with so little for so long that we are now qualified to do just about anything with almost nothing.
-
December 8th, 2001, 05:19 PM
#9
thnx
thnx Vorlin, others and especially Terr for your contributions
I have succesfully closed the port with some other rules in my Firewall settings.
The port seems to be invisible for the public and I still have full internet access (progs, games,...).
-
December 8th, 2001, 05:21 PM
#10
Nevertheless
Vorlin you could still post your configs for IPchains to view how YOU did it. (so I can compare functionality)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|