Enabling features found during penetration testing

Unanswered Question
Sep 10th, 2009

I received this from the vendor doing penetration testing:

Exposure Description:

Port scanning is a process by which services such as web servers and mail servers are determined to exist or not exist. Intruders employ automated port scanning utilities that work fast to determine the existence of services on an Internet connection. Most firewalls have the ability to block such fast port scans as they occur deceiving an attacker into believing that no ports or services are available on the targeted Internet connection. Since this information does not lead to any direct system compromise or theft of data, it receives a medium threat rating.

Solutions:

1. Consult the vendor or provider of your firewall or IDS/IPS product for details on how to setup port scan blocking.

I am running IPS 7.0 on my ASA5510 device. Is port blocking active by default on this or do I have to do something? (Sorry for the newbie question).

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion