Re: [fw-wiz] Annoying pop-ups

From: Paul D. Robertson (proberts@patriot.net)
Date: 10/29/02

• Next message: Crispin Cowan: "Re: [fw-wiz] Annoying pop-ups"
• Previous message: Gary Flynn: "Re: [fw-wiz] Annoying pop-ups"
• In reply to: Mikael Olsson: "Re: [fw-wiz] Annoying pop-ups"
• Next in thread: Luca Berra: "Re: [fw-wiz] Annoying pop-ups"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Paul D. Robertson" <proberts@patriot.net>
To: Mikael Olsson <mikael.olsson@clavister.com>
Date: Tue Oct 29 09:25:02 2002

On Tue, 29 Oct 2002, Mikael Olsson wrote:

> This is somewhat disconcerting.
>
> You _REALLY_ should be blocking all of 135--139, TCP as well as UDP,
> PLUS port 445, that got introduced in windows 2000.
>
> Windows networking is a lot more than just port 139, folks.
> Some of the not-so-clueful hackers haven't picked up on that yet,
> but it's a safe bet that the clueful ones have.

[snip]

The real message here is "Don't open Windows without a screen."

Given the prevalance of "personal firewalls" and their low to free cost
points, it *really* doesn't make sense not to provide protection at the
filtering layer. *Expecially* if it's a laptop and you're hauling it
around to foreign networks[1]. Double-especially if you're administering
firewalls, routers, or other core infrastructure from the device.

Paul
[1] Foreign as in "client, hotel, airport..." not "Swedish." ;)
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
proberts@patriot.net which may have no basis whatsoever in fact."
probertson@trusecure.com Director of Risk Assessment TruSecure Corporation

• Next message: Crispin Cowan: "Re: [fw-wiz] Annoying pop-ups"
• Previous message: Gary Flynn: "Re: [fw-wiz] Annoying pop-ups"
• In reply to: Mikael Olsson: "Re: [fw-wiz] Annoying pop-ups"
• Next in thread: Luca Berra: "Re: [fw-wiz] Annoying pop-ups"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [fw-wiz] Annoying pop-ups ... PLUS port 445, that got introduced in windows 2000. ... Windows networking is a lot more than just port 139, ... PLUS port 3389 just because of that remote assistance ... (Firewall-Wizards) RE: how to break a personal firewall ... > Windows uses for IPC between windows has not yet been re-designed, ... You were exploiting a limitation to the personal firewalls of the ... > they have patched the Windows messaging system my guess (from a quick ... > hook into the message queues to intercept such attacks. ... (Security-Basics) Re: Recurrent question ... An Anti-Virus program is useful exactly the same way a SPAM filter ... An Anti-Virus program DOES NOT PROTECT FROM EVERY VIRUS infection. ... The latter technics are impossible with Windows, ... > Personal firewalls are popular. ... (comp.security.firewalls) Re: Recurrent question ... users are using Windows in spite of this fact. ... "Personal Firewalls" don't solve this problem, too, because as long ... > They stop my keyboard from phoning home. ... >> from home users, and at best are abused by malware like the AutoClicker ... (comp.security.firewalls) Re: [Full-Disclosure] Re: January 15 is Personal Firewall Day,help the cause ... But Windows isn't delivered in such a minimum state by default. ... The additional downside of Personal Firewalls is that they require tons ... The advantage in Open Source software is that it doesn't run ad driven ... Windows doesn't have encryption on the level as Open Source because ... (Full-Disclosure)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint