Re: Closing open ports

From: DoPo (vbnova@hotmail.com)
Date: 11/14/01


From: "DoPo" <vbnova@hotmail.com>
To: <security-basics@securityfocus.com>, "phiber2001" <phiber2001@yahoo.com>
Date: Tue, 13 Nov 2001 19:12:12 -0500

The ports are not currently open to any foreign machines; the 0.0.0.0:0 and
*:* are just showing the ports are listening for connections from -your-
machine to -your- machine, and it's nothing to really worry about.
----- Original Message -----
From: phiber2001 <phiber2001@yahoo.com>
To: <security-basics@securityfocus.com>
Sent: Tuesday, December 11, 2001 10:28 PM
Subject: Closing open ports

> These are ports that are open in one of my w2k [ntfs] professionals
> machines. this pc runs 2 firewalls and an ids with a real time virus
> guard. I want to make some sense out of this and want to know how to
close
> these (only the malicious like 445) ports and how to do further analysis
on
> these.
>
> Any kind of help will be highly appreciated.
>
> TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
> TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
> TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING
> TCP 0.0.0.0:1026 0.0.0.0:0 LISTENING
> TCP 0.0.0.0:1027 0.0.0.0:0 LISTENING
> TCP 0.0.0.0:3372 0.0.0.0:0 LISTENING
> TCP 0.0.0.0:8431 0.0.0.0:0 LISTENING
> TCP 127.0.0.1:110 0.0.0.0:0 LISTENING
> UDP 0.0.0.0:445 *:*
> UDP 0.0.0.0:500 *:*
> UDP 0.0.0.0:10000 *:*
> UDP 127.0.0.1:1029 *:*
>
>
> _________________________________________________________
> Do You Yahoo!?
> Get your free @yahoo.com address at http://mail.yahoo.com
>
>