Portscan yourself!

David Kramer david at thekramers.net
Fri Sep 24 11:21:39 EDT 2004


On Fri, 24 Sep 2004, John Chambers wrote:

> | If you only have one machine, this URL can be used to portscan yoursef.
> |
> | http://www.dslreports.com/scan
> 
> Interesting. It gave my gateway box a clean bill of health. But I may
> do  a  bit of checking to see if I can find more details of what they
> actually do.
> 
> One thing that did make me a bit nervous: They require that you  turn
> on  java to run their test.  There's no obvious reason that they need
> to do this, as all the java seems to do is implement a  few  buttons.

No, the Java applet gets the output from their server.  Remember that 
the port scan is actually running on THEIR server, not yours.  It might 
even be doing some variant of RPC to fire it off on the server and get the 
results back.

If they implemented it as a regular browser window with a dynamic page 
sending you the output of the script, some users' browsers would likely 
time out.

-------------------------------------------------------------------
DDDD   David Kramer                           http://thekramers.net
DK KD
DKK D  As a SysAdmin, yes, I CAN read your e-mail, 
DK KD  but I DON'T get that bored!
DDDD   



More information about the Discuss mailing list