Re: ISP: "No Problem... we probe all the time"
From: Larry W4CSC (spaminator@knology.net)Date: 05/22/02
- Next message: Duane Arnold: "Trusted IP"
- Previous message: Larry W4CSC: "Re: Netgear RP114 question"
- In reply to: Dhosthi: "ISP: "No Problem... we probe all the time""
- Next in thread: Randy: "Re: ISP: "No Problem... we probe all the time""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: spaminator@knology.net (Larry W4CSC) Date: Wed, 22 May 2002 05:16:27 GMT
On 21 May 2002 13:39:48 -0700, netstatic2000@yahoo.com (Dhosthi)
wrote:
>My ISP (Earthwink Tech Supervisor) says that "regular" probes from
>them occur constantly and for administrative purposes, and to not
>worry as they do not represent any type of access threat. Also said
>to not worry about the foreign IP attempts unless ports have been left
>open for other work.
>
>Any thoughts on this reassurance?
They are correct. In order for any connect attempt to DO something to
you, something INSIDE your computer has to ANSWER the call and give
them access.....like a virus, trojan, worm, NetBIOS, File and Printer
Sharing....etc.
Open the DOS window.
Enter netstat -an (note space before - sign)
It should look like:
C:\WINDOWS>netstat -an
Active Connections
Proto Local Address Foreign Address State
TCP 0.0.0.0:1041 0.0.0.0:0 LISTENING
TCP 0.0.0.0:3300 0.0.0.0:0 LISTENING
TCP 127.0.0.1:8081 0.0.0.0:0 LISTENING
TCP 192.168.0.2:1041 209.249.90.101:119 ESTABLISHED
TCP 192.168.0.2:3300 209.249.90.101:119 ESTABLISHED
C:\WINDOWS>
The port 3300 connections to 209.249.90.101 port 119 is my Xnews
downloading dirty movies of beautiful women madly. The port 1041
connections to 209.249.90.101 port 119 is Free Agent connected to send
this message. The 127.0.0.1 port 8081 listening is WebWasher waiting
for my browsers so it can wash the crap off webpages, like spam, popup
spam, web bugs, cookies, etc.
Note there are no ports open for NetBIOS or printer/file sharing or
other Network services I don't need/use. There are also no odd, high
numbered ports open I don't know what they do.....a sign a trojan is
listening for a call from its kiddie cracker.....That's my virus
scanner, Norton Anti-Virus, doing its job, keeping my system clean.
If you are just going to use the internet, not sharing files and
resources with other computers on a LAN environment, the ONLY protocol
you need binding to on the NIC adapter in Control Panel - Network is
TCP/IP......no Client for Micro$oft Networking, no NetBIOS, no
NetBEIU, no file or printer sharing, no nothing.....except TCP/IP the
internet's protocol. Windoze will raise hell that your network is NOT
complete, which is true. Just tell it YES I want to continue and
it'll do it.....securely. Set Binding to ATM to NO, too.
Larry
- Next message: Duane Arnold: "Trusted IP"
- Previous message: Larry W4CSC: "Re: Netgear RP114 question"
- In reply to: Dhosthi: "ISP: "No Problem... we probe all the time""
- Next in thread: Randy: "Re: ISP: "No Problem... we probe all the time""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
