Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all.

Published byAlison Charles Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all."— Presentation transcript:

1 Network Security With nmap By *** *****

2 Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all

3 Ethernet interface netlab-2# nmap 10.10.2.1 Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Interesting ports on netlab-2.labnet.cse.ucsc.edu (10.10.2.1): (The 1588 ports scanned but not shown below are in state: closed) Port State Service 21/tcp open ftp 22/tcp open ssh 25/tcp open smtp 53/tcp open domain 80/tcp open http 111/tcp open sunrpc 587/tcp open submission 1020/tcp open unknown 1021/tcp open unknown 1022/tcp open unknown 1023/tcp open unknown 2049/tcp open nfs 8080/tcp open http-proxy Nmap run completed -- 1 IP address (1 host up) scanned in 8 seconds

4 Wireless Interface netlab-2# nmap 192.168.2.1 Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Interesting ports on netlab-2.net2.labnet.cse.ucsc.edu (192.168.2.1): (The 1588 ports scanned but not shown below are in state: closed) Port State Service 21/tcp open ftp 22/tcp open ssh 25/tcp open smtp 53/tcp open domain 80/tcp open http 111/tcp open sunrpc 587/tcp open submission 1020/tcp open unknown 1021/tcp open unknown 1022/tcp open unknown 1023/tcp open unknown 2049/tcp open nfs 8080/tcp open http-proxy Nmap run completed -- 1 IP address (1 host up) scanned in 8 seconds

5 Netlab server ethernet interface netlab-2# nmap 10.10.0.1 Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Interesting ports on netlab.labnet.cse.ucsc.edu (10.10.0.1): (The 1593 ports scanned but not shown below are in state: closed) Port State Service 21/tcp open ftp 22/tcp open ssh 25/tcp open smtp 53/tcp open domain 80/tcp open http 515/tcp open printer 587/tcp open submission 5999/tcp open ncd-conf Nmap run completed -- 1 IP address (1 host up) scanned in 9 seconds

6 A possible problem Port 1020 is open A known trojan called VAMPIRE attacks at this port

7 The solution Close port 1020! In /etc/rc.firewall: ${fwcmd} add reject from any to port 1020 via ${oif}

8 The security job is never done No matter how secure your firewall is, there are always going to be ways to exploit your computer, server, or LAN Take precautions, but also keep monitoring

Download ppt "Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all."

Similar presentations

DMZ (De-Militarized Zone)

DMZ (De-Militarized Zone)
1 Ports and IPv6. 2 Ports Transmission Control Protocol (TCP) or the User Datagram Protocol (UDP), used for communication Generally speaking, a computer.

1 Ports and IPv6. 2 Ports Transmission Control Protocol (TCP) or the User Datagram Protocol (UDP), used for communication Generally speaking, a computer.
CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.

CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.
CS682- Network Management and Security Prof. Katz.

CS682- Network Management and Security Prof. Katz.
IS 247 Introduction to Web Application Development Tim Wu.

IS 247 Introduction to Web Application Development Tim Wu.
Intruder Trends Tom Longstaff CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Sponsored by.

Intruder Trends Tom Longstaff CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA Sponsored by.
Providing secure open- access networks Oliver Gorwits Oxford University Computing Services.

Providing secure open- access networks Oliver Gorwits Oxford University Computing Services.
1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &

1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &
December 1, 2000Slide #1 Port Scanning Matt Bishop Department of Computer Science University of California, Davis.

December 1, 2000Slide #1 Port Scanning Matt Bishop Department of Computer Science University of California, Davis.
The Internet Ed Lazowska Bill & Melinda Gates Chair in Computer Science & Engineering University of Washington August 2010.

The Internet Ed Lazowska Bill & Melinda Gates Chair in Computer Science & Engineering University of Washington August 2010.
COEN 252: Computer Forensics Router Investigation.

COEN 252: Computer Forensics Router Investigation.
Networking in a Linux Environment Pete Eby Dan Thomas Robert Zurawski.

Networking in a Linux Environment Pete Eby Dan Thomas Robert Zurawski.
Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.

Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.
Module 1: Reviewing the Suite of TCP/IP Protocols.

Module 1: Reviewing the Suite of TCP/IP Protocols.
CBAC L AB. Nmap Port scanner Nmap: the beef, Zenmap: GUI frontend Findings before CBAC firewall c. What services are running and available on R1 from.

CBAC L AB. Nmap Port scanner Nmap: the beef, Zenmap: GUI frontend Findings before CBAC firewall c. What services are running and available on R1 from.
Taeho Oh/PLUS 3rd CONCERT Workshop Nov. 1999 Intrusion demonstration Part I Postech PLUS Taeho Oh (PLUS015)

Taeho Oh/PLUS 3rd CONCERT Workshop Nov Intrusion demonstration Part I Postech PLUS Taeho Oh (PLUS015)
© 2010 Cisco Systems, Inc. All rights reserved. 1 CREATE Re-Tooling Discovery Server Installing and Using it in the Discovery and Exploration Classes Angel.

© 2010 Cisco Systems, Inc. All rights reserved. 1 CREATE Re-Tooling Discovery Server Installing and Using it in the Discovery and Exploration Classes Angel.
CS391 Computer & Network Security

CS391 Computer & Network Security
Shadow Security Scanner Li,Guorui. Introduction Remote computer vulnerabilities scanner Runs on Windows Operating Systems SSS also scans servers built.

Shadow Security Scanner Li,Guorui. Introduction Remote computer vulnerabilities scanner Runs on Windows Operating Systems SSS also scans servers built.
Honeypot and Intrusion Detection System

Honeypot and Intrusion Detection System

Similar presentations

Ads by Google