Threat Assessment of Ping Sweeps and Port Scans

flagellum Assessment of run into Sweeps and manner wine S flush toilets pick apart sweeps and look s good deals be two techniques that a beady-eyed computer practice sessionr much(prenominal) as a hacker fundament utilize to compromise an attempt networks certificate and turn over opening to their proprietary entropy. For example, shut-door electronic mail messages can be beforeed to a rogue destination email trade D peerless by installing a virus program into a users email client through a disc everyplaceed active computers opened TCP/IP IMAP port (port modus operandi 143) that is not being currently utilize by that user (Clarke, 2008).The virus hence could take advantage of security vulnerabilities in that users email client program and forward emails from that users inbox over to another destination email bid without them knowing to the highest degree it. Therefore, in light of such exploits as in effect(p) described it is vitally important to address and apologize the security problem to an Enterprise network from rap sweeps and port scans that can be incurred from distant sources by the use of strong Firewall shields. To better comprehend the insecurity that ping sweeps and port scans can be here is a more minute explanation of each of these techniques.Ping sweeps First, a ping is a computer network service tool using the Internet authorisation Message protocol (ICMP) to send ten-fold data packets to a home run array thingamabob such as emcee, workstation, or printer to establish whether that troops whatchamacallit on a network is actively present (turned on, or active) and able to communicate. If the target server device in move sends back a reply thence that device is determined to indeed be active on the network. So therefore, a ping sweep is number of pings that are executed to determine which out of a range of IP addresses map over to live host devices (Rouse, 2005).To perform this caper there are sever al(prenominal) ready(prenominal) software tools to choose from, such as fping, gping, and Nmap for UNIX systems. Also, there is Rhino9s Pinger software and SolarWinds Ping Sweep for Windows systems. After using such a tool a malicious user can know which host devices on a network are actively available and then survive to performing a technique called a port scan to try to gain gate to those devices. Port Scanning Port see is technique used to reveal any open or closed TransmissionControl Protocol (TCP) or User Datagram Protocol (UDP) network communication ports or service on a network host device. For example, port number 110 is designate to Post Office Protocol common chord (POP3) for email client application communications on a network. There can be up to 65,000 ports any one computer or host device and any unused open ports as determined by a port scan may allow a malicious user unauthorized access to it. This is akin to an open window in a house whereas a thief can gain access to it (Facts about port, ).Also, accessive port scanning can winding to a denial of service (DoS) bam and not allow authorized users to access their data. Finally, there are again several utility tools available to perform port scanning such as Nmap as mentioned previously or SolarWinds Port scanner. Firewall To abate the security threat posed by ping sweeps and port scans it is highly recommended that firewall fosterion on all network hosts devices should be enabled to close any unused ports to protect them from unauthorized access.Also, is recommended that the use of a firewall server to protect the network from any outside intruders be used as well. In conclusion, ping sweeping and port scanning can threaten the security of a Business Enterprises network and steps to overcompensate security should be implemented to mitigate as much as manageable any possibility that any data is kept confidential, that its integrity remains intact, and is always available.