1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Advanced question...

Discussion in 'Networking (Hardware & Software)' started by wakiababa, 2003/04/03.

Thread Status:
Not open for further replies.
  1. 2003/04/03
    wakiababa

    wakiababa Inactive Thread Starter

    Joined:
    2003/04/02
    Messages:
    23
    Likes Received:
    0
    I have been using several firewalls on my systems only to find out that they fail tremendously because one of my system or a few have been hacked. I use a sniffer to see packets coming in and going out and have seen several IP addresses coming and going to the hacked systems. I am not interested on trapping the perpretators, only to stop the behaviour. So, I got me a small firewall from a swap meet the other day which allows me to set up to 2500 rule sets. I then embarked on a journey which has given me an advanced knowledge on the mater. Most people set firewalls with only ports blocking. With the sniffer on hand I found GREP, CHAOS, IRTP and IRDRP with XTP, IGP and GMTP entries. This intrigued me.
    I ventured onto the Internet to find out about these guys which I had a vague idea that they were protocols which are not hardly used. Well, I was right, these are protocols but I was wrong in asuming they were not hardly used. Many tel companies are using them to scan and vere firewalls of their customers, I have even seen spyware getting onto systems because they are guided by these protocols which are non-port specific.

    On this website I found many of the protocols which were mention earlier. http://www.netopia.com/en-us/support/technotes/hardware/NIR_052.html

    With this onhand I decided to start blocking all ports except for what I used most frequently (TCP, IP, UDP).
    My findings are as follows:

    * There has not been another hacking incident onto my systems
    * Many tel. co.s are using them every day including RR
    * If you are using a firewall and there aren't any definitions or rulesets for these types, you are living yourself opened.
    * Knowing this has gotten me into trouble with several of my ISPs because I should not know about it.
    *Not telling everyone else would make me selfish and my concious wouldn't let me sleep knowing someone else could be having the same type of trouble as I did.

    Thanks
    wakiababa
     
    wakiababa,
    #1
  2. 2003/04/03
    wakiababa

    wakiababa Inactive Thread Starter

    Joined:
    2003/04/02
    Messages:
    23
    Likes Received:
    0
    OH SORRY!

    My question is this, has anyone else worked with these type of flaw before?
    Thanks
     
    wakiababa,
    #2


  3. to hide this advert.

  4. 2003/04/03
    Newt

    Newt Inactive

    Joined:
    2002/01/07
    Messages:
    10,974
    Likes Received:
    2
    What "flaw "?
     
    Newt,
    #3
Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...