15 Feb
2014
15 Feb
'14
7:01 p.m.
Caff,
Akurat som sa zacal snazit riesit security trosku serioznejsie co ma ale
prekvapuje ze mi nmap hlasi otvoreny port 1001 na oboch VPSkach obvzlast
vzhladdom na iptables rules.
Toto je iptables -L output:
Chain INPUT (policy ACCEPT)
target prot opt source destination
fail2ban-ssh tcp -- anywhere anywhere multiport
dports ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:http
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
DROP all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain fail2ban-ssh (1 references)
target prot opt source destination
DROP all -- 61.174.51.208 anywhere
RETURN all -- anywhere anywhere
A toto mi hlasi nmap z lokalneho PC:
Starting Nmap 6.00 ( http://nmap.org ) at 2014-02-15
20:00 CET
Nmap scan report for sifro.co (185.8.164.47)
Host is up (0.058s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
80/tcp open http
443/tcp open https
1001/tcp open unknown
Nmap done: 1 IP address (1 host up) scanned in 23.22 seconds
Vie mi niekto povedat WTF? resp. co robim zle?
Vdaka