Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » The Site » Old Forums » Kerio - Tiny Support » [Kerio 2.x] Ports open in all versions of Kerio 2.15!
Search Topic:
Uniqs:
211		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Forum Guidelines ·Kerio/Tiny pre-3.x FAQ ·BBR Security Forum ·Security FAQ
[Kerio 4.x] port 44334 is OPEN: BIG SECURITY HOLE »
« [Tiny] Integrity Check  
AuthorAll Replies

ghost16825
Use security metrics
Premium
join:2003-08-26		reply to ghost16825
Re: [Kerio 2.x] Ports open in all versions of Keri

Yes, you're both completely correct. 2.15 does stealth all ports. I was a bit hasty to reach a conclusion running the firewall in a half protected state.
to forum · permalink · 2003-11-29 21:49:37 · (locked)


BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR		reply to ghost16825
I'm also completely stealth with Kerio 2x. If you use the gateway option you need to use a block all rule.
to forum · permalink · 2003-11-28 13:50:44 · (locked)


gwion
wild colonial boy
Premium,ExMod 2001-08
join:2000-12-28
Pittsburgh, PA

reply to ghost16825
Re: [Kerio 2.x] Ports open in all versions of Kerio 2.15!

see: »[Kerio 4.x] port 44334 is OPEN: BIG SECURITY HOLE
- I SYN scanned 2.1.5 in the following configs... this is with my own ruleset:

Remote allowed/block all inbounds rule active: Blocked by inbounds rule. Returns stealthed.

Remote allowed/no block all inbounds rule:alerts, and, on deny, returns stealthed.

Remote not allowed/block all inbounds rule active: same as above.

Remote not allowed/no block all inbounds rule: same as above.

Evidently, they've lost something, in 4.x... uhhh... a sound implementation of the administrative interface.
--
The willow bends unbroken when angry tempests blow,The stately oak is levelled and all its strength laid low...Oliver Wendell Holmes
Even when you feel like your life is fading
I know that you'll go on forever
You're that good...
to forum · permalink · 2003-11-28 03:49:46 · (locked)

ghost16825
Use security metrics
Premium
join:2003-08-26

 This is an offshoot from this thread:
»[Kerio 4.x] port 44334 is OPEN: BIG SECURITY HOLE

said by the viper See Profile:
I did a full port scann 1- 65535 lol while i ate Turkey , and this was the result w/ KPF 4.008 ids on and rule set from Blitzen from 2.1.5...

Port: Status Service Description
1-1970 stealthed n/a n/a
1972-2175 stealthed n/a n/a
2177-44333 stealthed n/a n/a
44335-65535 stealthed n/a n/a
1971 closed n/a n/a
2176 closed n/a n/a
44334 open n/a n/a

Recommendation:
These ports are open/closed on 2.15 as well!

1)Can anyone else confirm this, using the latest one available for download?

2)Can anyone with nmap check these specific ports if you have 2.15 and send in the results. What operating system does the nmap come up with?
to forum · permalink · 2003-11-28 02:51:37 · (locked)
Forums » The Site » Old Forums » Kerio - Tiny Support[Kerio 4.x] port 44334 is OPEN: BIG SECURITY HOLE »
« [Tiny] Integrity Check  

Wednesday, 25-Nov 05:15:14 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [103] New AT&T Ad Campaign Hits Back At Verizon
· [85] New Bill Takes Aim At Higher Verizon ETFs
· [84] Apple Joins AT&T Verizon Snark Fest
· [40] In-Flight Internet Headed For Bumpy Landing?
· [32] Senators Want ACTA Made Public
· [30] Earthlink Suffers From Major E-mail Outage
· [30] AT&T Offers New Prepaid Wireless plans
· [28] Frontier Increases Modem Rental Fee
· [20] Despite Billions In USF Fees, U.S. Libraries Lack Bandwidth
· [16] Vivendi In Way Of Comcast's NBC Desires
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· [Rant] Damn Sermons through my speakers! [Rants, Raves, and Praise]
· Mysterious $800 Cash Deposit? [General Questions]
· IE8 InPrivate filter from adblock plus list [Microsoft Help]
· Is Gear Score now the new requirement to get pug invite? [World of Warcraft]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]
· Climate Change Scandal Erupts After Email Hack. [Security]
· [Config] cisco asa 5505 with multiple outside IP addresses [Cisco]
· Extjs grid combo box. [Webmasters and Developers]
· What is the spell hit cap for a lvl 80 full arcane spec mage [World of Warcraft]