Security Test Sites...

[Croc]

Great list Ken.
I have just upgraded to WinME from W98 and my son has set the study up with his PC and networked into mine. All new to me this networking but I will cope.
I went to ISS and checked it out. The scan works on WinME even though there is no listing for it.
Then I went to Netfarmers. I think the site is no more. There is only an error page after the homepage. Sad really because that was a fun place to send the unsuspecting. Hope it comes back although it has been out for quite some time now.

Tread softly,
Croc.

[Matt615]

Ken this should be archived

[DiskDoc]

ken i've been to most of these sites before, they all seem to be very good and usefull. DSLreports is one of the best. And yes i think it should be archived too.

[emixnem]

thanx you very much ken!!

[Liquidsky]

Did the dsl test and it said :


Conclusion: Healthy Setup! We could detect nothing interesting on any of the default ports on your IP address. Your computer appears to be a hard target. Well done!
ALL TCP
FILTERED No response (open or closed) to an open request was received.
ALL UDP
FILTERED No response (open or closed) to an open request was received.


My zonealarm is doing a good job

[DiskDoc]

my computer itself is doing a good job. running no firewalls at all. doen't even have a virus scanner installed at the moment. :P

[laithmeister]

Thx Man

[W_I_Z_K_I_D]

Thanx Ken

Yes this should deffinetly be archived

Anybody whanto test weather or not your computer is stealth (Invisible to the outside world) or if your ports are open and vunrable goto the links that ken provided.
great way to see how secure your pc actually is once agin Thanx Ken Great Stuff~!

[Scum333]

My SMC 7004BR is as always performing beautifully. I never worry about security now. I share all my drives without passwords between my computers and even have easy passwords on all my Administrator accounts. I have never had a problem. I even gave some jerk on IRC my IP address so he could take a stab at my machine and he could not.

Thanks guys for the advice on the SMC awhile back.

[Croc]

Originally posted by Scum333
I have never had a problem. I even gave some jerk on IRC my IP address so he could take a stab at my machine and he could not.

That was a bold move!!!!
Hope the "jerk" doesn't read Speedguide Security Forum!
He may invite the 13 year old that did the DDOS on Gibson Research to play with ya. Still

[fredra]

Hey Scum
That is good that you have the SMC...but that only stops "INCOMING" and it uses NAT. While it will stop most script kiddies and "PINGS", you have to bear in mind that you still need a good AV and Trojan Cleaner. It is pointless to close the barn door after the horse has left the stable, so I would suggest that you get a good software firewall (ZA, or ZAPro or Tiny) so that your PC is protected against both "incoming" and "outgoing" .
With the speed of PC these days a software firewall will not show any appreciable slow downs......
Just a suggestion...
PEACE

[Scum333]

oh fredra, you are totally right on that one. I do scan my computer always for trojans and viruses via the online free ones that are around.

thanks

[madlaker]

For the sites, this place rocks!!!

[Epiphany]

I have limited input on some:

Shields Up is pretty basic. I suppose it's good for alerting you to glaring problems but if you pass this without effort it doesn't mean you're home free.

Sygate. I really like this site. It's very easy to get right down to business and they have several different tests... the ICMP isn't enabled yet as far as I know.

Vulnerabilities. This place I can't figure out. They have a free test that seems pretty extensive; you give them your email address and they send you a report. Thing is, I've run that test 3 times and only got an emailed report one time. Other two times I never heard anything from them or got any results. Funniest thing was that the report I did get notified me they had uncovered my computer and workgroup name, yet the names they listed on the report bore absolutely no resemblance to mine.

Virtual Suicide. Heh heh heh... this one is worth a visit. I haven't taken any of their 'tests' and don't ever plan to, but I recommend it!

Didn't notice Security Space in your list. They have several free and (very) specific tests available.

[MedicBob]

Thanks, I have been to, or am planning to be at, several of those sites. Nice place here:2cool:

[MrTRiX]

http://www.pcflank.com is also a very good test. I wish I could get my privacy to full but its always 50%. Anyone got ideas how to fix it.

[Ac238]

Ken:
Thank you for the links – they have been a big help in fine tuning and understanding TPF

MrTRiX:
Great site! (http://www.pcflank.com) After visiting greEd’s page and checking out his ‘current project’, I was ready for this site. Besides a tight firewall, I blocked cookies, referrers, java applets and javascript. My filter log for this site shows it blocked 1 cookie and 71 javascripts. The firewall log was real interesting to review.

[MrTRiX]

No Prob. Glad u liked it. 1st time there it gave tiny quite a run for its money cause of some errors that were fixed in beta 1. If u want u could say your firewall and such during the test. Maybe it can help others or bring up questions. Such as how to get that Privacy thing to its best. 50% was all I could get.

[Sr_Matanza]

You may think that you have stopped anyone from messing with you..... but it isn't so....
An example:
Mi static IP address is: 63.164.235.10 ...... I don't worry about telling it... because it is IMPOSSIBLE for ANYONE EVEN PING me... they would never find it.

But the problem doesn't end there.... I do have perfect security from that...... but anyone within my network ( that uses the same ISP ) can logon into my Windows ... I know so because I got into someone else's PC ( with read- write permissions ) in about 15 minutes...... all I had to do is a scan for that port 139 in my local network ( 10.2.x.x ) and I got hundreds of PC's waiting to be accesed... I even got into one that had a Web server ( I left a suprise there ). So you ain't fully secured..... NEVER.

[Ashdaw]

Ken.. thank you for listing those links to security sites.. I tried 12 sites and YES it took a LONG time but I consider it worth it..
3 Of the sites got the WRONG IP address and they said that I had port 23, 80, 113 open.. which I havent, I run Zone ALarm Pro on this Machine and it is configured to be at HIGH security settings.. But I did them. PC Flank was the one that got me.. there are three tests and TWO passed good but the Browser one FAILED.. bummer... I am using IE6 build 2512 also.. oh well I will have to look at that further.. again Thanx Ken :2cool:

[Suzie]

Tried the serure design scan. Took about 45 min.
Results where very good. No open ports. Considering I just put the ZA on last week and got the idea from SG. I got lucky with the set up, we've never used a firewall before. Not sure I like all the pop ups but with everything going on, I like the thoughts of keeping tabs.

Thanks Speedguide! G

[hazmatcar]

I think you found all of them. At least the good ones
Thanks!!!

[spe¢]

one word for you OWNAGE !

;-)

ta

[slowhand]

Security tester got in on one of my ports.

[brembo]

Slowhand..I just ran the security tester without Zone alarm, 5 staelthed ports and 2 CONNECTIONS. With Zone Alarm, 1 refused connection and 47 stealthed ports. Seems ZA does its job as advertised.

[ShakaFlex]

what do you guy's have for Java & Activex control. You can be sent a java script that will delete your registry and other thing.

[TheGhost]

Conclusion: Healthy Setup! We could detect nothing interesting on any of the default ports on your IP address. Your computer appears to be a hard target. Well done!

ALL TCP FILTERED No response (open or closed) to an open request was received.

ALL UDP FILTERED No response (open or closed) to an open request was received.


I don`t run a thrid party firewall (NO ZA) :P , or have any kind of switch router or hub hooked up to my pc.

What I am using tho is the IP Security Policies On Local Computers that is installed on all pc`s with Win 2k & XP.

Setup right it can be just as effective as a thridparty Firewall, Without alot of the headaches that comes with them.

[Croc]

Hey Ken,
Just a note to let you know that ISS must gave removed the IE scanner. Grrrr.
Guess they finally got it sorted and now have it in their "purchase me" list.
Good that NetFarmers is back up though. Great site that one. Love the graphics.

Croc.

[theINSPECTOR]

Nice job on the lists. That, along with some edjumacation of protocols, filters, firewalls and such, has allowed me to setup my net-and-router to damn-near airtight. (NO, I'm not issuing any challenges)
Thanks again to all of you on SG......

[blazinaspliff]

awesome list

[babbler]

Originally posted by Scum333
oh fredra, you are totally right on that one. I do scan my computer always for trojans and viruses via the online free ones that are around.

thanks

so can you tell me where those free online trojan scans are? i've never used one, but would like to add it to my arsenal. also, what online virus scan do you use?
thanks in advance - and have a great holiday season!

[BaLa]

Ken
I didn't read the whole thread though...

Junkbusters - 404
Onion Router - Not Found
You have submitted a request to http://www.onion-router.net for a document that could not be located. Please check the URL, or visit the top of our tree and attempt to locate the document that way.


Creative Element - 500
Bell & Howell - Page cannot be found..

[Croc]

Hi BaLa,
http://www.onion-router.net/ is working ok. The paragraph below is the first from the page.
----------------------------------
The Onion Routing research project is building an Internet-based system that strongly resists traffic analysis, eavesdropping, and other attacks both by outsiders (e.g. Internet routers) and insiders (Onion Routers themselves). It prevents the transport medium from knowing who is communicating with whom -- the network knows only that communication is taking place. In addition, the content of the communication is hidden from eavesdroppers up to the point where the traffic leaves the OR network.
----------------------------------
There are a few of the links that have been removed or changed.
Good to see an interest in the maintenance of them. Ken surely does not have the time to be able to maintain it all the time.

Merry Christmas.

Croc.

[Mike_W]

Here are my results from Shields Up. I am using Zone Alarm. I dunno if I am "hacker-proof", but it makes me feel more secure!

go to: http://grc.com/x/ne.dll?rh1bi2l2=ydzof5oy

------------------------------------------------------------------------------
Your computer at IP:

xx.xx.xxx.xx

Is being 'NanoProbed'. Please stand by. . .



Total elapsed testing time: 9.991 seconds
(See "NanoProbe" box below.)

Port Service Status Security Implications
21 FTP Stealth!
There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

23 Telnet Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

25 SMTP Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

79 Finger Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

80 HTTP Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

110 POP3 Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

113 IDENT Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

135 RPC Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

139 NetBIOS Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

143 IMAP Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

443 HTTPS Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

445 MSFTDS Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

5000 UPnP Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

[Croc]

Hi Mike,
GRC scan is good for the ports they test and that is only a few.

There are more complete scans out there and most are listed in Ken's post.

Try this one... http://scan.sygatetech.com/

There are a few scanning options you can try down the left column.

Have fun.

Croc.

[Ken]

Originally posted by Mike_W

Your computer at IP:

xx.xx.xxx.xx

Is being 'NanoProbed'. Please stand by. . .

Hey Mike,
After you were "NanoProbed" by Gibson, did you feel violated and have that "Not so fresh" feeling? heheheheehehe

You should be in good shape! Just look around the threads and ask if you find something that you don't understand.
Take care,
Ken

[UnitedWeStand]

Shields up! Nanaprobe.
Shows steath! all the way down

Verisign; got my Browser mixed up.

Sygate; shows really good results.. duh. I have the firewall.

PCFlank;

Symantec; takes too long.

Creative Element; link doesn't work.

Leader; is really a great test.

Voice of the Public; I get
Not Found
The requested URL /BrowserRedirect.html was not found on this server.

Apache/1.3.19 Server at http://www.voiceofthepublic.com Port 80
Not Found
The requested URL /BrowserRedirect.html was not found on this server.

Apache/1.3.19 Server at http://www.voiceofthepublic.com Port 80

And Big Chicken takes me to someplace where I have to rate the site. No test there I assume.

I'll try some others and post my OPINION.

[Ken]

Hey guys,
I am doing a bit if editing to the list. (Trying to get a router review done in the process... )
Anyway, go to 1st post that lists the sites at the beginning of this thread. Please keep in mind that I am reviewing them at the moment, and give me a bit of patience...
Ken

[nobeta]

This was just what I have been looking for! A whole bunch of links that deal with exactly this item. Now I will spend some major time exploring the whole site. Also I got this advice from a search on the Linksys router you reviewed and gave great marks to. "Three caveats: Make sure you disallow admin logins from the internet, make sure you change the admin password, and make sure you don't put any of your systems in the "DMZ" without implementing proper security on the systems."

nobeta

[mzenzer]

So where is this list? I don't see it and the first message I see is from Croc, not Ken the thread starter.