Re: XP Security Issue

From: John Coutts (administrator@yellowhead.com)
Date: 03/02/03 

From: administrator@yellowhead.com (John Coutts)
Date: Sun, 02 Mar 2003 18:16:45 -0000

In article <MPG.18caff5f5820fe2b9899ce@news-server.columbus.rr.com>,
void@nowhere.com says...
>You can turn off FILE/PRINTER sharing, and unless you have a network you
>don't really need it.
***************
Not an option; we are in the networking business.
***************
>If you are using a DSL/Cable connection get yourself a ROUTER with NAT
>(linksys) and put yourself behind it.
***************
Not an option; our network is open to public access.
***************
>XP, even Home, has a firewall of sorts, it should have been enabled by
>default - look up on the web how to enable it.
***************
Not a good option. We have had to advise a number of our customers to disable
the MS firewall because it suddenly started blocking access to the Internet.
***************
>You need to disable all the eye-candy, it eats memory, and you can set
>it to look just like 2000.
***************
You are certainly right about that. The bells and whistles on this one are
endless.
***************
>If you want a network OS, get XP Professional - I switched all my
>workstations from 2000 to XP Prof and love it.
***************
Why would I spend an extra $150.00 for Professional, when I can get all the
functions and features I need in 2000; and 2000 so far seems a lot easier to
configure. All the networking is in one place instead of having to search for
it.
***************
>--
>--
>Leythos999@columbus.rr.com
>(Remove 999 to reply to me)
***************
I thought Microsoft was supposed to put an increased emphasis on security. That
certainly does not seem to be the case with this new operating system. One of
the first rules in network security is not to leave unnecessary ports open.
Each open port is a potential security risk, and yet it seems to grow with each
new operating system. I don't yet know what all the open ports on XP are used
for, but I am not impressed.
-------------------------------------------------------------------
Microsoft(R) Windows 98 (C)Copyright Microsoft Corp 1981-1998.
C:\WINDOWS>netstat -an
Active Connections
  Proto Local Address Foreign Address State
  TCP 192.168.1.6:137 0.0.0.0:0 LISTENING
  TCP 192.168.1.6:138 0.0.0.0:0 LISTENING
  TCP 192.168.1.6:139 0.0.0.0:0 LISTENING
  UDP 192.168.1.6:137 *:*
  UDP 192.168.1.6:138 *:*
-----------------------------------------------------------
Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.
C:\>netstat -an
Active Connections
  Proto Local Address Foreign Address State
  TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:1027 0.0.0.0:0 LISTENING
  TCP 192.168.1.6:139 0.0.0.0:0 LISTENING
  UDP 0.0.0.0:135 *:*
  UDP 0.0.0.0:445 *:*
  UDP 0.0.0.0:1026 *:*
  UDP 0.0.0.0:1890 *:*
  UDP 0.0.0.0:1891 *:*
  UDP 192.168.1.6:137 *:*
  UDP 192.168.1.6:138 *:*
  UDP 192.168.1.6:500 *:*
---------------------------------------------------------------
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:\>netstat -an
Active Connections
  Proto Local Address Foreign Address State
  TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:1030 0.0.0.0:0 LISTENING
  TCP 0.0.0.0:5000 0.0.0.0:0 LISTENING
  TCP 127.0.0.1:3001 0.0.0.0:0 LISTENING
  TCP 127.0.0.1:3002 0.0.0.0:0 LISTENING
  TCP 127.0.0.1:3003 0.0.0.0:0 LISTENING
  TCP 192.168.1.6:139 0.0.0.0:0 LISTENING
  TCP 192.168.1.6:3085 0.0.0.0:0 LISTENING
  UDP 0.0.0.0:135 *:*
  UDP 0.0.0.0:445 *:*
  UDP 0.0.0.0:500 *:*
  UDP 0.0.0.0:1027 *:*
  UDP 0.0.0.0:1031 *:*
  UDP 127.0.0.1:123 *:*
  UDP 127.0.0.1:1900 *:*
  UDP 192.168.1.6:123 *:*
  UDP 192.168.1.6:137 *:*
  UDP 192.168.1.6:138 *:*
  UDP 192.168.1.6:1900 *:*
----------------------------------------------------------------

Relevant Pages

  • RE: "Delayed Write Failed" error message when you write a file to
    ... Check the network. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... message when you write a large file to a server. ...
    (microsoft.public.windows.server.sbs)
  • RE: SBS2003 Premium and ISA2004 SP3 FTP and POP3 problems
    ... Based on my research on the error code, I think this is a know network ... Can you access external FTP on SBS? ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • RE: Cannot Connect via remote desktop
    ... You can establish the RDP connection and it is stops work soon. ... work stably for your network. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • RE: Cannot Connect via remote desktop
    ... You can establish the RDP connection and it is stops work soon. ... work stably for your network. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • Re: List of servers in this workgroup is currently not available.
    ... Computer description appears before the computer name in the My Network ... Microsoft CSS Online Newsgroup Support ... <recently installed a D-Link print server with a reserved IP. ... <As soon as I uninstalled the print server and rebooted the computers, ...
    (microsoft.public.windows.server.sbs)