Quote:
|
Nice you leave ftp open for me to hack in, and that mail server, nice! Thanks. You are not serving http docs so why leave 80 open? pop3 too how nice for me. Your firewall is set up for a server, you better quit that crap. Who said to do that? Do these people you work for know you are doing it that way?
|
You really need to calm down... The firewall is set up to accomodate several hundred servers and thousands of workstations. Is that good enough of an answer for you? ftp, http, ssl, and pop3 are open because they need to be open. You take me for an idiot and that's only your first mistake. Besides, from what I've heard from you so far, you sound like you couldn't break into even a Windows box, with or without any firewall.
I am not a windows user, on 90% or my own machines I'm running OpenBSD 2.8, while I only have one Windows NT 4 box I access over VNC and a couple Slackware Linux 7.1 (and one 3.3) boxes.
If you'd like the output of netstat, fine, but I think this discussion wouldn't go anywhere. My own system, with netstat, tcpdump, snort, and so forth, doesn't report a single port 2000-5000 being used at all, so I renew my original statement.
And perhaps you will take your own advice.