Originally Posted by TallCool1
You can test your firewall status using ShieldsUp! (GRC.com) which is part of one of the most useful service sites on the Internet--especially when you upgrade to Windows XP. You want all your ports to be "stealth."
Steve gibson's personal staements are a joke in the security world.
"Stealthing under many situations can actually give back _more_ information than just having the port closed, especially on server systems.
Stealthing is just another farce from the Steve Gibson camp. If you have a system that is listening on port 80 and stealthing everything else, the attacker obviously knows that a system exists there, and using timing attacks a sophistocated attack can even determine the type of firewall you are running as stealthing adds more latency than having the port just not being open. This latency may be calculated be using a carefully constructed request to any open services. Once this is accomplished, the attacker can make a good guess about the firewall based on this data."
SOURCE:
http://daniweb.com/techtalkforums/showthread.php?t=2985
And I quote here : "Shortly before the Windows XP launch,security gadfly(look that up)
Steve Gibson made a highly sensationalized asserstion that Windows XP's support for a programming interface called
raw sockets would lead to widespread network address spoofing and denial of service attacks based on such technique. Of course, this apocalypse never materialized. The guy(Steve) is a joke, in the security world."
SOURCE:
http://www.amazon.com/gp/reader/0072...51#reader-link 
