> Interesting thing about changing ports on important services, is that if > you use a common port found on a OS X (arbitrary OS) install for your > apache port, you can cause all kinds of problems with port scanners > displaying the wrong OS. Second, if its a never used port (say 4001) a > portscanner will never even find it, most port scanners do not scan > EVERY port just the commons one. With nmap it is not the default to > scan every port, but it can be done and it takes a long time.
No, but If Cox is running some sort of NIDS, it doesn't need to do port scans to identify open server ports. It can sniff the traffic going to/from that port and identify it as an open server port, without ever having to generate any packets of its own. -Tim
