There are a number of ports that are assigned to a particular type of communication, FTP() runs on port 21,
SMTP() runs on port 25 etc. Many of these ports are left open for particular and private reasons by the web
server or website administrator. If these ports are left open but are not restricted then an attacker will
abuse these ports for their own benefit. If an SMTP port is left open and does not require authentication a
attacker could send 1000’s of emails through the web server without the administrator ever finding out.
Leaving FTP access unrestricted will result in direct access to the operating systems file system which
allows an attacker to modify any file they like. These are just a few of the hundreds of commonly used ports.
Each one needs to be assessed and restricted or closed.
WebSafe will test commonly used ports:
WebSafe will check all opened ports on the websites web server and attempt unauthenticated access. An assessment
will be issued to the user upon the completion of the website security audit.