| Internet Connection Security for Windows Users |
| by Steve Gibson, Gibson Research Corporation |
|
Listening Internet Ports Port Probe attempts to establish standard TCP/IP (Internet) connections on a handful of standard, well-known, and often vulnerable Internet service ports on YOUR computer. Since this is being done from our server, successful connections demonstrate which of your ports are "open" and actively soliciting connections from passing Internet port scanners.
Your computer at IP:
Is now being probed. Please stand by. . .
|
21 |
FTP |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
23 |
Telnet |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
25 |
SMTP |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
79 |
Finger |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
80 |
HTTP |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
110 |
POP3 |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
113 |
IDENT |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
139 |
Net BIOS |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
143 |
IMAP |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
443 |
HTTPS |
Stealth! |
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address! |
| Note: Several of the "Service" names shown above link directly to items on the ShieldsUP! FAQ Page to provide specific discussion of ports and services. If the port status shown above concerns you, please read the general descriptions below, then click on the port's service name for specific discussion. |
If all of the tested ports were shown to have stealth status, then for all intents and purposes your computer doesn't exist to scanners on the Internet! It means that either your computer is turned off or disconnected from the Net (which seems unlikely since you must be using it right now!) or an effective stealth firewall is blocking all unauthorized external contact with your computer. This means that it is completely opaque to random scans and direct assault. Even if this machine had previously been scanned and logged by a would-be intruder, a methodical return to this IP address will lead any attacker to believe that your machine is turned off, disconnected, or no longer exists. You couldn't ask for anything better. There's one additional benefit: scanners are actually hurt by probing this machine! You may have noticed how slowly the probing proceeded. This was caused by your firewall! It was required, since your firewall is discarding the connection-attempt messages sent to your ports. A non-firewalled PC responds immediately that a connection is either refused or accepted, telling a scanner that it's found a live one ... and allowing it to get on with its scanning. But your firewall is acting like a black hole for TCP/IP packets! This means that it's necessary for a scanner to sit around and wait for the maximum round-trip time possible — across the entire Net, into your machine, and back again — before it can safely conclude that there's no computer at the other end. That's very cool. |
The contents of this page are Copyright (c) 2001 by Gibson Research Corporation.
SpinRite, ChromaZone, ShieldsUP, NanoProbe, the character 'Moe' (shown above),
and the slogan "It's MY Computer" are registered trademarks of Gibson Research
Corporation (GRC), Laguna Hills, CA, USA. GRC's web and customer privacy policy.
~ ~ ~