Results 1 to 10 of 10
Thread: Port Scan
-
06-10-2010, 07:32 PM #1Junior Guru Wannabe
- Join Date
- Jun 2010
- Posts
- 66
Port Scan
I have a VPS sever with full root access. When I port scan with Zenmap its give a little too much information like all my open parts and banner information. How can I improve my security and make little or no information show when am port scanned I installed port sentry for a start I have a CentOS Linux system with Plesk installed. Newbie by the way
-
06-10-2010, 08:25 PM #2Newbie
- Join Date
- Jan 2010
- Posts
- 25
you might want to try and use /etc/hosts.allow and /etc/hosts.deny
For example if you just wanted to permit http traffic.
/etc/hosts.allow
Code:httpd: ALL
Code:ALL: ALL
Last edited by jack369; 06-10-2010 at 08:32 PM.
-
06-10-2010, 08:31 PM #3Junior Guru Wannabe
- Join Date
- Jun 2010
- Posts
- 66
what does that do
-
06-10-2010, 08:34 PM #4Newbie
- Join Date
- Jan 2010
- Posts
- 25
That should allow you to block anything that you do not need. Just remember to add rules for ssh, smtp or anything else you might need.
-
06-10-2010, 08:39 PM #5Junior Guru Wannabe
- Join Date
- Jun 2010
- Posts
- 66
thanks i will try that now
-
06-11-2010, 01:52 AM #6Temporarily Suspended
- Join Date
- Mar 2009
- Location
- InfoPark, Cochin, India
- Posts
- 986
Which firewall do you use? I recommend to you to install CSF firewall in the server and block all the unused ports in the server.
-
06-11-2010, 01:54 AM #7Temporarily Suspended
- Join Date
- Mar 2009
- Location
- InfoPark, Cochin, India
- Posts
- 986
-
06-11-2010, 02:20 AM #8Junior Guru Wannabe
- Join Date
- Jun 2010
- Posts
- 66
i didnt do it lol i use the firewall that comes with Plesk Panel i have version 9.3.0
-
06-11-2010, 09:37 AM #9Web Hosting Master
- Join Date
- Jul 2009
- Posts
- 1,568
Plesk firewall is good too but in case of a mess it's difficult to get it going since it involves a database. I would recommend CSF for you.
| LinuxHostingSupport.net
| Server Setup | Security | Optimization | Troubleshooting | Server Migration
| Monthly and Task basis services.
| MSN : madaboutlinux[at]hotmail.com | Skype : madaboutlinux
-
06-11-2010, 10:06 AM #10Newbie
- Join Date
- Aug 2009
- Posts
- 29
Once you get a good firewall and IP banning utility (CSF + LFD gets another vote here), then look at:
1. Disabling any unwanted daemons (services)
2. Opening up only the ports you need in the firewall
4. Changing banner information (ie remove any version information if possible).
Something like CSF+LFD can pickup port scanning and block that IP temporarily. Not perfect, but it can help.
Similar Threads
-
Port Scan! Legal?
By Babushka99 in forum Hosting Security and TechnologyReplies: 4Last Post: 11-19-2004, 12:17 PM -
port scan service
By XMLxp in forum Hosting Security and TechnologyReplies: 4Last Post: 10-17-2004, 02:32 PM -
27347 port scan
By Tux-e-do in forum Hosting Security and TechnologyReplies: 2Last Post: 12-01-2003, 12:47 AM -
Powweb Doing Port Scan?
By Prisoner in forum Web HostingReplies: 8Last Post: 09-28-2002, 08:53 PM -
Odd Port Scan Logs
By diesel1 in forum Dedicated ServerReplies: 4Last Post: 08-27-2002, 01:59 PM