Additionally, I usually disable the windows networking protocols by unbinding them from the external interface. Generally, if I don't need a service, I disable it. Stevo -- Steve McQuade Infoseek Corporation -----Original Message----- From: Michael H. Warfield [mailto:mhwat_private] Sent: Monday, October 25, 1999 11:22 AM To: Kaptain Cc: Michael H. Warfield; Christoph Schneeberger; firewall-wizardsat_private Subject: Re: Strange open ports on windows machines On Mon, Oct 25, 1999 at 10:44:38AM -0700, Kaptain wrote: > <snip> > > Even without BO there, with ports 135-139 tcp and udp open to > > access you have all the security of a tissue in a hurricane. > > > Cheers, > > > Christoph Schneeberger > > > SCS Telemedia > > Mike > </snip> > How can you disable the public accessibility of the 135-139 windows ports? One word: Firewall. Block all access to those ports from anything outside or your site. I think there may also be some filtering code available, but, since I don't use it, I don't know anything about it. BTW... For those of you playing with Windows 2000, add port 445 to the list of things that should be blocked from outside contact. You can do the same sorts of things with port 445 that you can with port 135. > -K Mike -- Michael H. Warfield | (770) 985-6132 | mhwat_private (The Mad Wizard) | (770) 331-2437 | http://www.wittsend.com/mhw/ NIC whois: MHW9 | An optimist believes we live in the best of all PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:45:04 PDT