All ports open when enabling PPTP server

Learn about scoring Download Discussion's Raw Score: 33051.7

August 22, 2011 02:48 PM

Rating (0 votes)

Rate This!

disgrace

Member

I know most people don't use insecure PPTP anymore, but just be aware of this if you end up running it. I portscanned my router from a remote linux machine before and after clicking that enable PPTP button and I found that before you click enable PPTP, all ports on your router are closed and properly filtered. After you click it and reboot the router, ALL ports are now open when doing the same portscan. Seems a big security risk... Below is the portscan before enabling the PPTP option Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2010-03-18 11:24 PDT All 1680 scanned ports on xxx-xxx-xxx.comcast.net (xxx.xxx.xxx.xxx) are filtered After enabling (just SOME shown below. There was much more than this): 115/tcp open sftp 119/tcp open nntp 125/tcp open locus-map 129/tcp open pwdgen 132/tcp open cisco-sys 133/tcp open statsrv 140/tcp open emfis-data 147/tcp open iso-ip 156/tcp open sqlsrv 181/tcp open unify 182/tcp open audit 189/tcp open qft 190/tcp open gacp 191/tcp open prospero 197/tcp open dls 201/tcp open at-rtmp 202/tcp open at-nbp 207/tcp open at-7 216/tcp open atls 224/tcp open unknown 225/tcp open unknown 231/tcp open unknown 234/tcp open unknown 235/tcp open unknown 247/tcp open subntbcst_tftp 249/tcp open unknown 251/tcp open unknown 255/tcp open unknown 276/tcp open unknown 283/tcp open unknown 301/tcp open unknown 319/tcp open unknown 332/tcp open unknown 336/tcp open unknown 337/tcp open unknown 340/tcp open unknown 342/tcp open unknown 355/tcp open datex-asn 359/tcp open tenebris_nts 360/tcp open scoi2odialog 374/tcp open legent-2 376/tcp open nip 405/tcp open ncld 423/tcp open opc-job-start 430/tcp open utmpsd 432/tcp open iasd 437/tcp open comscm 467/tcp open mylex-mapd 472/tcp open ljk-login 473/tcp open hybrid-pop 487/tcp open saft 496/tcp open pim-rp-disc 497/tcp open dantz 498/tcp open siam 499/tcp open iso-ill 505/tcp open mailbox-lm 513/tcp open login 517/tcp open talk 523/tcp open ibm-db2 526/tcp open tempo 529/tcp open irc-serv 533/tcp open netwall 543/tcp open klogin 550/tcp open new-rwho 556/tcp open remotefs 580/tcp open sntp-heartbeat 586/tcp open password-chg 587/tcp open submission 598/tcp open sco-websrvrmg3 608/tcp open sift-uft 613/tcp open unknown 622/tcp open unknown 637/tcp open lanserver 639/tcp open unknown 642/tcp open unknown 643/tcp open unknown 648/tcp open unknown 651/tcp open unknown 653/tcp open unknown 661/tcp open unknown 665/tcp open unknown 667/tcp open unknown 668/tcp open unknown 681/tcp open unknown 683/tcp open unknown 697/tcp open unknown 721/tcp open unknown 728/tcp open unknown 740/tcp open netcp 749/tcp open kerberos-adm 757/tcp open unknown 762/tcp open quotad 780/tcp open wpgs 791/tcp open unknown 800/tcp open mdbs_daemon 806/tcp open unknown 807/tcp open unknown 810/tcp open unknown 823/tcp open unknown 824/tcp open unknown 825/tcp open unknown 833/tcp open unknown 838/tcp open unknown 840/tcp open unknown 852/tcp open unknown 857/tcp open unknown 859/tcp open unknown 864/tcp open unknown 895/tcp open unknown 914/tcp open unknown 927/tcp open unknown 930/tcp open unknown 935/tcp open unknown 940/tcp open unknown 945/tcp open unknown 953/tcp open rndc 958/tcp open unknown 962/tcp open unknown 980/tcp open unknown 992/tcp open telnets 993/tcp open imaps 1002/tcp open windows-icfw 1003/tcp open unknown 1007/tcp open unknown 1026/tcp open LSA-or-nterm 1033/tcp open netinfo 1220/tcp open quicktime 1248/tcp open hermes 1360/tcp open mimer 1364/tcp open ndm-server 1376/tcp open ibm-pps 1386/tcp open checksum 1392/tcp open iclpv-pm 1397/tcp open audio-activmail 1398/tcp open video-activmail 1417/tcp open timbuktu-srv1 1423/tcp open essbase 1425/tcp open zion-lm 1428/tcp open informatik-lm 1435/tcp open ibm-cics 1438/tcp open eicon-server 1460/tcp open proshare2 1474/tcp open telefinder 1476/tcp open clvm-cfg 1478/tcp open ms-sna-base 1485/tcp open lansource 1486/tcp open nms_topo_serv 1503/tcp open imtc-mcs 1505/tcp open funkproxy 1527/tcp open tlisrv 1528/tcp open mciautoreg 1529/tcp open support 1530/tcp open rap-service 1546/tcp open abbaccuray 1550/tcp open 3m-image-lm 1650/tcp open nkd 1651/tcp open shiva_confsrvr 1723/tcp closed pptp 1900/tcp open UPnP 1988/tcp open tr-rsrb-p2 1989/tcp open tr-rsrb-p3 1993/tcp open snmp-tcp-port 2002/tcp open globe 2004/tcp open mailbox 2016/tcp open bootserver 2041/tcp open interbase 2068/tcp open advocentkvm 2433/tcp open codasrv-se 2500/tcp open rtsserv 2602/tcp open ripd 2628/tcp open dict 3086/tcp open sj3 3264/tcp open ccmail 3455/tcp open prsvp 3531/tcp open peerenabler 4321/tcp open rwhois 4672/tcp open rfa 5001/tcp open commplex-link 5102/tcp open admeng 5191/tcp open aol-1 5236/tcp open padl2sim 5301/tcp open hacl-gs 5510/tcp open secureidprop 5520/tcp open sdlog 5555/tcp open freeciv 5977/tcp open ncd-pref-tcp 5997/tcp open ncd-pref 6004/tcp open X11:4 6143/tcp open watershed-lm 6144/tcp open statsci1-lm 6145/tcp open statsci2-lm 6400/tcp open crystalreports 6543/tcp open mythtv 6544/tcp open mythtv 6547/tcp open PowerChutePLUS 6699/tcp open napster 7010/tcp open ups-onlinet 8082/tcp open blackice-alerts 8888/tcp open sun-answerbook 8892/tcp open seosload 9090/tcp open zeus-admin 9876/tcp open sd 10005/tcp open stel 11371/tcp open pksd 12345/tcp open NetBus 13702/tcp open VeritasNetbackup 16959/tcp open subseven 20005/tcp open btx 22305/tcp open wnn6_Kr 27005/tcp open flexlm5 27006/tcp open flexlm6 32772/tcp open sometimes-rpc7

MyOpenRouter

All ports open when enabling PPTP server

disgrace

Add Your Reply

Sponsored Links

Please log in or register to participate in this community!