posted
Hey all, I've been using (Symantec) Norton Internet Security for a while, now in the "2005" version.
All due respect, but there's a problem that I discovered when I logged on to the Symantec Security Site; I ran their scans, and apparently, Port 80 is "Open and vulnerable".
But then, why Should it be closed or stealthed? I tried to configure my firewall to higher security, but Port 80 remains open. How do I configure specific ports to be stealthed, regardless of when they're used?
Thanks,
Jonny
[ December 14, 2004, 01:52 AM: Message edited by: Jonathan Howard ]
Posts: 2978 | Registered: Oct 2004
| IP: Logged |
posted
I'm not sure what standard they're using to determine "open and vulnerable." But port 80 is one of those ports that you want to be at least a little bit open, or else you wouldn't be able to read this web page.
Posts: 37449 | Registered: May 1999
| IP: Logged |
posted
I know; and yet, Symantec (and other sites) warns me I am vulnerable. If it's stealthed then only outbound (and consequently inbound, with the signal started from within my PC) signals can be viewed. It's another measure of security.
posted
Odds are, it thinks you are vulnerable because it's assuming you might have a web server running on your system, and therefore keeping port 80 open, without any other info, means you could be susceptible to buffer underflow/overflow errors, where a hacker could use these methods to run arbitrary commands on your system.
I'm guessing that it's just being over zealous, especially on windows systems with port 80 (IIS runs on the port).