• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs

Not what you are looking for? Ask the experts!

This forum thread needs a solution.

Non-Stealthed but Blocked Port 22 (SSH Protocol)and weird occurences

I have one unstealthed Port - port 22, which is the SSH Port. It is blocked. I had the same issue with the security product I had been using earlier this evening and switched back to NS to see if it was the security product that was the cause. It wasn't.

Here's a little info I got about Port 22:

"SSH stands for "Secure Shell". SSH commonly uses port 22 to connect your computer to another computer on the Internet. It is most often used by network administrators as a remote login / remote control way to manage their business servers. Examples would be: your email administrator needs to reboot the company email server from his home, or your network administrator needs to reset your office password while she is away at a conference." It is also the Port used by the NSA to attempt to break encrypted communications. "On December 28, 2014 Der Spiegel published classified information leaked by whistleblower Edward Snowden which suggests that the National Security Agency may be able to decrypt some SSH traffic. The technical details associated with this attack were not released as a part of the publication."  https://en.wikipedia.org/wiki/Secure_Shell#Vulnerabilities (From what I have read all communications through Port 22 to another Computer are encrypted.)

I am a former Federal Employee holding a Top Secret Security Clearance and my extremely intrusive 156-page Form SB 86, which has to be filled out to apply for a Top Secret Clearance, was exposed during the recent OPM Data Theft. I have also almost immediately after the announcement of the security clearance data theft, info. recieved my first phising email. It was from a person I do not know who said that he had just received a wire transfer from me and asked me to look at what appeared to be an attached Word document to verify it.

What I found very disturbing was immediately after installing the Norton Toolbar in FireFox I saw in Large Blue Letters - "Port 22 - SSH Exploit." Then I saw for a few seconds a page that appeared to be about port 22 discussing the exploit and then the Exploit Language and the Discussion page vanished and I never saw them again, but my port 22 remains blocked but not stealthed. Neither the blue letters nor the page discussing the port seemed to have been produced by NS. I find this all very strange and disturbing.

Any comments or solutions appreciated as always.