|Title:||Checkpoint FW-1 identification|
The remote host has the three tcp ports 256, 257 and 258
It's very likely that this host is a Checkpoint Firewall/1.
Letting attackers know that you are running FW/1 will
help them to focus their attack or will make them
change their strategy.
You should not let them know such information.
Solution : do not allow any connection on the
firewall itself, except for the firewall
protocol, and allow that for trusted sources
If you have a router which performs packet
filtering, then add ACL that disallows the
connection to these ports for unauthorized
See also : http://www.phoneboy.com/fom-serve/cache/405.html
Risk factor : Low
|Copyright||This script is Copyright (C) 1999 Renaud Deraison|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.