Link to home
Start Free TrialLog in
Avatar of mapuche2012
mapuche2012Flag for Norway

asked on

stealth all ports

How do I stealth all ports? Windows 7/Windows XP Pro. (Various security apps.)
ASKER CERTIFIED SOLUTION
Avatar of mrworta
mrworta

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of mapuche2012

ASKER

I cannot agree. In today's world, where even the protection software is more or less a hoax, one should try to hide as much as possible using the operating system tools.

Free ZoneAlarm and AdAware are good examples, these are widely used, but what do they do? Next to nothing.

netsh advfirewall firewall set opmode mode=ENABLE exceptions=DISABLE is a good start, but using accepted test tools, port 80 (and 22) are still shown.

On Vista/Windows 7 the command results in:
IMPORTANT: "netsh firewall" is deprecated;
use "netsh advfirewall firewall" instead.
For more information on using "netsh advfirewall firewall" commands
instead of "netsh firewall", see KB article 947709
at http://go.microsoft.com/fwlink/?linkid=121488 .

The requested operation requires elevation (Run as administrator).

This command replaces the old:
netsh advfirewall set currentprofile firewallpolicy blockinboundalways,allowoutbound

I have done this, and will test.

Some security testsites:
http://www.whatsmyip.org
http://www.grc.com
http://www.auditmypc.com/
I have to increase the value of this.
I really would like to "stealth" my PC. If I cannot close port 80 (and 22) what about trying to somehow show/forward calls to false IP-addresses? Would that be possible, and if so, how?
SOLUTION
Avatar of OriNetworks
OriNetworks

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Personally I am not running ANY services on port 80 and 22, but my proxy provider must be. The only explanation I can have is that the proxy provider is running some kind of hidden service from my pc? I have not been able to determine if Windows Firewall or Comodo Firewall (which I am using) are able to stealth my ports, b. ut at least they are in theory able to say that all ports should be closed except those I open myself. This I have done but still these two ports are open??
It seems very strange if a third party was able to override my setup! Then they would have to be logged in as (super)administrator, not just part of the administrator group.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
usual cause of a true (not false!) positive on ports 80 and 22 is a cable or broadband router - typically, they have those two ports open for administration, and will respond (either with a syn/ack or a rst) even if the router is "stealth"