Search Members Help

» Welcome Guest
[ Log In :: Register ]

Mini-ITX Boards Sale, Fanless BareBones Mini-ITX, Bootable 1G DSL USBs, 533MHz Fanless PC <-- SALE $200 each!
Get The Official Damn Small Linux Book. DSL Market , Great VPS hosting provided by Tektonic
Pages: (2) </ [1] 2 >/

[ Track this topic :: Email this topic :: Print this topic ]

reply to topic new topic new poll
Topic: Possible internet vulnerability?, (port left open)< Next Oldest | Next Newest >
buzzard Offline





Group: Members
Posts: 34
Joined: Jan. 2007
Posted: June 04 2008,02:52 QUOTE

The ShieldsUp scanner
https://www.grc.com/x/ne.dll?bh0bkyd2

has detected that my computer (DSL 3) has port 68 open. (bootstrap protocol)

https://www.grc.com/port_68.htm

I've yet to have any trouble from this, but could future hackers get in through it?

(oh, and for those of you with windows, go to sheildsup and see what it finds)
Back to top
Profile PM WEB YIM 
Jason W Offline





Group: Members
Posts: 260
Joined: Nov. 2006
Posted: June 04 2008,03:00 QUOTE

From what I understand port 68 must be left open to have a dynamic IP addres received through DHCP.  And that it is quite normal.
Back to top
Profile PM 
roberts Offline





Group: Members
Posts: 4983
Joined: Oct. 2003
Posted: June 04 2008,03:02 QUOTE

Port 68 is from the pump -i eth0 used to fetch an IP.

If that is a concern to you then add

pkill pump

to your /opt/bootlocal.sh after obtaining your IP.
Port 68 will be closed.
Back to top
Profile PM WEB 
buzzard Offline





Group: Members
Posts: 34
Joined: Jan. 2007
Posted: June 04 2008,03:22 QUOTE

Wow, that was quick!

Quote (Jason W @ June 04 2008,03:00)
From what I understand port 68 must be left open to have a dynamic IP addres received through DHCP.  And that it is quite normal.


If DHCP get-address is all its for, that sounds safe enough.

Quote (roberts @ June 04 2008,03:02)
Port 68 is from the pump -i eth0 used to fetch an IP.
If that is a concern to you then add
pkill pump
to your /opt/bootlocal.sh after obtaining your IP.
Port 68 will be closed.


I might go ahead and kill the pump anyway, though, since I use
an arcane dialup modem for internet, and set my lan address
with ifconfig eth0 192.168.x.x

Thanx  :)
Back to top
Profile PM WEB YIM 
curaga Offline





Group: Members
Posts: 2163
Joined: Feb. 2007
Posted: June 04 2008,11:06 QUOTE

You could also add "nodhcp" to boot codes to stop pump from starting at all.

--------------
There's no such thing as life. Those mean little jocks invented it ;)
-
Windows is not a virus. A virus does something!
Back to top
Profile PM 
6 replies since June 04 2008,02:52 < Next Oldest | Next Newest >

[ Track this topic :: Email this topic :: Print this topic ]

Pages: (2) </ [1] 2 >/
reply to topic new topic new poll
Quick Reply: Possible internet vulnerability?

Do you wish to enable your signature for this post?
Do you wish to enable emoticons for this post?
Track this topic
View All Emoticons
View iB Code