port security
Thread Starter
Join Date: May 2002
Location: somewhere near an airport
Posts: 173
Likes: 0
Received 0 Likes
on
0 Posts
port security
have just installed the norton security 2004 package and performed one of those security tests that they provide from thier web site
it came back saying that port135 was open
how do i change this port to stealth as every other port is
i run windows xp home if it helps
have installed the disc on the laptop and everything is stealthy
cheers
it came back saying that port135 was open
how do i change this port to stealth as every other port is
i run windows xp home if it helps
have installed the disc on the laptop and everything is stealthy
cheers
The Oracle
Join Date: Aug 2001
Location: Naples, Florida U.S.A.
Posts: 2,902
Likes: 0
Received 0 Likes
on
0 Posts
nitro rig driver,
Port 135 is certainly not a port that needs to be, or should be, exposed to the Internet. Hacker tools such as "epdump" (Endpoint Dump) are able to immediately identify every DCOM-related server/service running on the user's hosting computer and match them up with known exploits against those services. Any machines placed behind a NAT router (any typical residential or small business broadband IP-sharing router) will be inherently safe. And any good personal software firewall should also be able to easily block port 135 from external exposure. That's what you want.
In addition, many security conscious ISPs are now blocking port 135 along with the notorious "NetBIOS Trio" of ports (137-139). So even without any of your own proactive security, you may find that port 135 has been blocked and stealthed on your behalf by your ISP.
From Microsoft:
COM Security Frequently Asked Questions
You will find additional ways to disable the port in the link above.
Take Care,
Richard
Port 135 is certainly not a port that needs to be, or should be, exposed to the Internet. Hacker tools such as "epdump" (Endpoint Dump) are able to immediately identify every DCOM-related server/service running on the user's hosting computer and match them up with known exploits against those services. Any machines placed behind a NAT router (any typical residential or small business broadband IP-sharing router) will be inherently safe. And any good personal software firewall should also be able to easily block port 135 from external exposure. That's what you want.
In addition, many security conscious ISPs are now blocking port 135 along with the notorious "NetBIOS Trio" of ports (137-139). So even without any of your own proactive security, you may find that port 135 has been blocked and stealthed on your behalf by your ISP.
From Microsoft:
COM Security Frequently Asked Questions
You will find additional ways to disable the port in the link above.
Take Care,
Richard
Join Date: Mar 2001
Location: UK
Posts: 179
Likes: 0
Received 0 Likes
on
0 Posts