Hi all,
I have requested a security check from http://www.protectyourserver.com/ and they send me a free report about my cpanel server.
The only high security risk that they found on my server (I have followed the instruction on how to protect the box) is this :
------------
It is possible to by-pass the rules of the remote firewall
by sending UDP packets with a source port equal to 53.
An attacker may use this flaw to inject UDP packets to the remote
hosts, in spite of the presence of a firewall.
Solution : Review your firewall rules policy
------------
On my conf.apf I see that I open the UPD port 53.
Do you think that this is a false positive (they said even that this would be a false positive) or have I to correct something ?
Thank you
Sampei.
Full Version: apf & port 53
Are you running BIND (or other DNS server) on your server? IF so, then you would need UDP port 53 open on your firewall.
Thank you 
My box is hacker free now)
My box is hacker free now
)
Just because the report says thats your only weakness doesn't mean a hacker wont find a way in. Plus I would hope your box was "hacker free" before you ran the scan anyway 
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.