mapuche2012
asked on
stealth all ports
How do I stealth all ports? Windows 7/Windows XP Pro. (Various security apps.)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I have to increase the value of this.
I really would like to "stealth" my PC. If I cannot close port 80 (and 22) what about trying to somehow show/forward calls to false IP-addresses? Would that be possible, and if so, how?
I really would like to "stealth" my PC. If I cannot close port 80 (and 22) what about trying to somehow show/forward calls to false IP-addresses? Would that be possible, and if so, how?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Personally I am not running ANY services on port 80 and 22, but my proxy provider must be. The only explanation I can have is that the proxy provider is running some kind of hidden service from my pc? I have not been able to determine if Windows Firewall or Comodo Firewall (which I am using) are able to stealth my ports, b. ut at least they are in theory able to say that all ports should be closed except those I open myself. This I have done but still these two ports are open??
It seems very strange if a third party was able to override my setup! Then they would have to be logged in as (super)administrator, not just part of the administrator group.
It seems very strange if a third party was able to override my setup! Then they would have to be logged in as (super)administrator, not just part of the administrator group.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
usual cause of a true (not false!) positive on ports 80 and 22 is a cable or broadband router - typically, they have those two ports open for administration, and will respond (either with a syn/ack or a rst) even if the router is "stealth"
ASKER
Free ZoneAlarm and AdAware are good examples, these are widely used, but what do they do? Next to nothing.
netsh advfirewall firewall set opmode mode=ENABLE exceptions=DISABLE is a good start, but using accepted test tools, port 80 (and 22) are still shown.
On Vista/Windows 7 the command results in:
IMPORTANT: "netsh firewall" is deprecated;
use "netsh advfirewall firewall" instead.
For more information on using "netsh advfirewall firewall" commands
instead of "netsh firewall", see KB article 947709
at http://go.microsoft.com/fwlink/?linkid=121488 .
The requested operation requires elevation (Run as administrator).
This command replaces the old:
netsh advfirewall set currentprofile firewallpolicy blockinboundalways,allowou
I have done this, and will test.
Some security testsites:
http://www.whatsmyip.org
http://www.grc.com
http://www.auditmypc.com/