RE: Huge security breach in standard w2k install
From: Arnott James M Contr AEDC/TEK (James.Arnott@arnold.af.mil)Date: 01/11/02
- Previous message: H C: "RE: Huge security breach in standard w2k install"
- Maybe in reply to: Kenneth Christensen: "Huge security breach in standard w2k install"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Arnott James M Contr AEDC/TEK <James.Arnott@arnold.af.mil> To: "'RH'" <RH@beulah.org>, "'H C'" <keydet89@yahoo.com>, "'focus-ms@securityfocus.com'" <focus-ms@securityfocus.com>, "'kc@proff-art.dk'" <kc@proff-art.dk> Date: Fri, 11 Jan 2002 14:05:24 -0000
I would also recommend that you might want to start scanning on a regular
basis. I have seen to many folks lock up their systems and then forget about
them. Becareful to not get a false sense of security from using software
firewalls. Nothing is 100% effective when it comes to security.
Wish you luck
JA
-----Original Message-----
From: RH [mailto:RH@beulah.org]
Sent: Thursday, January 10, 2002 4:36 PM
To: 'H C'; 'focus-ms@securityfocus.com'; 'kc@proff-art.dk'
Subject: RE: Huge security breach in standard w2k install
Exactly... scanning as an admin will reveal a lot more information of
course. I would recommend the use of Zone Alarm or Tiny Firewall on your
workstations; this will protect your workstation from internal and external
connection attempts if used correctly. There is seldom a need for other
users to connect to file shares on your workstation system, and these
products would allow connection on a case by case basis.
Firewalling also blocks scanner software too... ;-)
-----Original Message-----
From: H C [mailto:keydet89@yahoo.com]
Sent: Thursday, January 10, 2002 4:39 PM
To: Kenneth Christensen; focus-ms@securityfocus.com
Subject: Re: Huge security breach in standard w2k install
Here we go again...
> having installed the network scanner recommend in
> the mails on this thread,
Since you started this thread, I'm curious...which
scanner did you install?
> I discovered something horrific .. my own
> workstations at the office
> apperently expose both shares AND users/groups on
> the machines ( W2K Pro )
Kind of depends. How did you run the scanner? Did it
find this 'hole' running as an administrator, or via a
null session?
> how on earth can i disable this HUGE security hole ?
Well, again, that sort of depends. What are you
protecting from? If you're behind a firewall, and
you're NAT'd, the direct external threats to your
internal systems may be minimal.
However, it may just be best to disable NetBIOS on all
of your NICs. But then, that would prevent a lot of
functionality that you may need on your network.
__________________________________________________
Do You Yahoo!?
Send FREE video emails in Yahoo! Mail!
http://promo.yahoo.com/videomail/
- Previous message: H C: "RE: Huge security breach in standard w2k install"
- Maybe in reply to: Kenneth Christensen: "Huge security breach in standard w2k install"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
