Find the answer to your Linux question:
Results 1 to 3 of 3
I've discovered that even if you block tcp/udp/icmp input and output to and from a host you can still port scan that host and find out it's open ports. I'm ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Jul 2009
    Posts
    47

    defeating nmap -PN


    I've discovered that even if you block tcp/udp/icmp input and output to and from a host you can still port scan that host and find out it's open ports. I'm assuming this means that that host can still do the same to me. Is there a way to block port scanners like this so I know that they can't see me online?

    also, how else can i be seen as online, with tcp/udp/icmp blocked?

  2. #2
    Linux Engineer GNU-Fan's Avatar
    Join Date
    Mar 2008
    Posts
    935
    Quote Originally Posted by muton View Post
    also, how else can i be seen as online, with tcp/udp/icmp blocked?
    Because you are known to other network nodes.
    Imagine the police asking your neighbourhood questions about you and showing everybody a picture of you. Finally you will be found, no matter if you answer the doorbell or not.
    Debian GNU/Linux -- You know you want it.

  3. #3
    Just Joined!
    Join Date
    Jul 2009
    Posts
    47
    i see, thanks.

  4. $spacer_open
    $spacer_close

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •