Wow, I tried to connect.. managed to connect with no problem and then the server tried to run some scans on me that I had built scripts to block... so then I was banned =P

The connect scan did return port 1023. I'm not sure why the stealth scan did not. Haha, yeah, I'm sure I scanned the right IP.. and yes I can reach SSH and the WebTool with no problems.

A traceroute from outside goes from the gateway to my firewall and then the firewall reply continues. So that's what? A proxy? I wonder if those scan results are reflective from something my ISP has setup in front of my firewall.

The only box with services I have (which isn't even running at the moment, nor are the firewall rules setup for it) is an all-in-one linux web server. But those rules aren't active as I've only enabled the SSH/WebTool rules.

No problem. That looks good. I actually prefer the Corsair RAM (which looks like it'd be a little cheaper for the same thing). I've used Corsair in almost all of the computers I've custom built and not had a problem. That's just me though.

Suppose I should also mention the results of netstat....

I'm running nmap v4, on XP Pro.

The ports I listed show open when doing both a stealth scan and a full connect scan.

I have a virtual EnGarde machine also. When I get home I'll try scanning that one to see what sort of results it produces. Just seems like strange results... or someone compromised my box pretty quick!

Alright,

So I still haven't given up on getting this EnGarde Linux fully functional. I finally fixed my other issues and everything seems to be working correctly on the box itself. I decided to run an nmap scan on it from an external IP to see the results (expecting to see all ports closed). However, this is the list of open ports I received:

21, 25, 3389, 443, 80, 113, 22, 8080, 1720, 1352, 7070, and 139.

Now, my current firewall (iptables) rules are set to a drop policy on input, output and forward. The only accept rules I have in place are to allow me access from the IP doing the scan to SSH and the admin WebTool (1023) for the software. Why in the world is it reporting all of these other ports open? Anyone have any ideas?

Check your DNS settings (name lookup failed).

Alright, so you need 240-pin DDR2 4200 (533Mhz) memory.

According to that, you have 2 slots available. They can hold a maximum of 1Gb DDR2 (2x512) memory. Since you currently have 1x256, I would recommend that you either buy a second 256, or by 2x512 and max your machine out at the 1Gb.

As for the speed, from that list it doesn't show (or that I see) anything. Like I said, the easiest way is to open your computer, pull out the memory module and look on the sticker on the side. It'll either say something like 400, or PC2 3200.

Yup, that's the pretty much the one.

It's my understanding that there are no other certifications that can match the technical knowledge required to pass the SANS/GCIA certification exams (at least from a vendor neutral standpoint, if not overall).

I think what Don meant by saying there are other certifications that have better material and harder exams, is not meaning something comparable to the CEH, but other certifications in general. For example, the CISSP certification is one of the most respected certifications in the industry. It's also a very hard 225 or 250 (can't remember) question exam with a 6 hour time limit. And, as I mentioned above, the GCIA certifications require a great deal of technical knowledge.

As for LPT, I don't know how much information you'll find on it. I couldn't find a whole lot. I'm not sure how several people have the certification when the courseware has not been released, but I have seen training centers that offer it so I don't know how they go about teaching it. As of right now, I don't think there is a great deal of value on this certification as it's not well known (and hasn't really been released; or so it seems).

I have also registered for this conference already and will be attending the ECSA/LPT course as well.

Kevan, there are two ways to upgrade RAM, speed and size. First, you need to figure out if you're using DDR or DDR2. This is as simple as opening the case and taking the RAM out (make sure you power down first of course). There should be a label on the memory stick telling you what type of RAM it is. If not, check the board as that may also have the slots labeled as DDR or DDR2. You'll also want to check to see how much (size) your board can hold as well as the maximum speed supported (this should hopefully be with the manual; if not, contact the manufacturer).

Once you've determined the type, your capacity, and speed supported, you can start shopping. When looking around, as I've mentioned, you can buy speed or size. The size (in your current example, is 256Mb) and the speed is typically 266-550 Mhz (DDR) and 400-1200 Mhz(DDR2). I don't think your current RAM would be 128 DDR2, as DDR2 is normally 240. DDR is usually 184 I believe. Obviously the more and faster you go, the higher your price goes. If you're looking to only run one additional virtual machine, I would recommend you double to 512Mb at a minimum, preferably to 1Gb if you can afford it.

Hope that helps.

- V

I could re-explain it, but Negrita has already written a pretty good article on VMware, check it out here.

It allows you to run a virtual computer inside of another computer (ex. a 'host' XP Pro system, with a 'guest' (virtual) Fedora system inside of it).

Do either of you have any more specific questions? All of the information regarding EC-Councils certifications can be found on their website.

• CEH
• ECSA
• LPT

I have not taken any courses from InfoSec Institute nor have I heard much about them.