Re: Securing a server under Windows 2000

From: Jeff Cochran (jcochran.nospam@naplesgov.com)
Date: 11/15/02

  • Next message: NeoSadist: "Re: Securing a server under Windows 2000" 

    From: jcochran.nospam@naplesgov.com (Jeff Cochran)

    >how could I close all ports below 1024.

    Just don't open them in your firewall. Yup, you should be using one.

    You *can* close ports and turn off services listening on ports
    manually, for example by using TCP/IP filtering (look under Help) on
    your NIC. But a firewall is just so much easier, cleaner and better
    for monitoring.

    Beyond that, http://www.microsoft.com/security/

    Jeff

    Relevant Pages

    • Re: Trouble accessing Outlook Web Access from behind firewall
      ... When starting the firewall I also set ... > rejected and dropped packets are logged, however I see nothing in my log ... > # Higher ports needed to accept incoming/outgoing calls ...
      (comp.security.firewalls)
    • Re: iptables configuration
      ... >> that if a 'virus/trojan' initiated a connection to the net, the firewall ... >> would not protect the LAN. ... The LAN is NATed with private IPs to one public IP. ... the ports that are used by services running on linux. ...
      (comp.os.linux.security)
    • Re: Norton Personal Firewall 2003
      ... |> First thing I would do is put the GRC test site into the Exclusions ... | ports they will not get the same result being in my blocklist, ... the firewall checks unsolicited inbound communications attempts. ...
      (comp.security.firewalls)
    • Re: NetBios Names and SP2
      ... This will tell you which ports are open in the firewall as well as some ... Run the command (note: you must have the Support Tools from the Windows ... Check that "Enable NetBIOS over TCP/IP" is selected in the network ...
      (microsoft.public.windowsxp.network_web)
    • Re: What is broken:McAfeee firewall or my router ????? Urgent, ple
      ... your computer regardless of what McAfee firewall said. ... If your router is ... warned about those ports being available right away if you had any of those ...
      (microsoft.public.security)