[NTLUG:Discuss] Scanning networks

[bryn konti]

I do security audits on my networks with a utility
called nmap (the best port scanner ever IMHO).
Nmap can provide an accurate scan of your external
address from within a firewall in most cases. Nmap
comes with some distributions of linux, but in case
you  don't already a copy you can download it here:

www.insecure.org


 Once I am aware of the  vulnerable ports I can use
telnet or other utilities to see if they can be
hacked. There is some older information of how these
attacks can be carried out at insecure.org as well.  
Of course before I do any security audit, I check my
rc scripts to see what I am starting in the
background....I should only be running services I
need.

Cheers,

Bryn 

--- Patrick Parks <patrick at patrickparks.com> wrote:
> I am in the process of securing my network, and have
> a few questions. I
> have DSL, and have a RH box set up with 2 nics, 1 to
> local net and one
> to DSL. When I scan the DSL IP from inside my
> network, am I actually
> going through the net or am I seeing it from inside
> my network? The
> machine I am using to scan it with is also a trusted
> host on the gateway
> box, so should  I use ip aliasing and assign a
> different ip to my nic in
> the machine I am using to scan and try scanning that
> way to see what
> really is open? Thanks
> 
> Patrick Parks
> -- 
> 
> _______________________________________________
> https://ntlug.org/mailman/listinfo/discuss


__________________________________________________
Do you Yahoo!?
Faith Hill - Exclusive Performances, Videos & More
http://faith.yahoo.com