Re: NetBEUI and security

From:
Date: 10/29/02

• Next message: bert: "possible backdoor/trojan contacting www.icq.com"
• Previous message: : "Re: Learning about Security and Firewalls"
• In reply to: NeoSadist: "Re: NetBEUI and security"
• Next in thread: craig: "NetBEUI and security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Tue, 29 Oct 2002 09:29:41 -0900

NeoSadist wrote:
> "craig" <craig.athome@virgin.net> wrote in message
> news:26ca3cec.0210281207.7a14b8a2@posting.google.com...
>
>>Hi folks,
>>
>>I'm considering using NetBEUI on a small network with internet access,
>>for file and print sharing. i.e remove TCP/IP bindings from the
>>networking client.
>>My motivation for this is simply another layer of security, due to the
>>non routable nature of NetBEUI.
>>
>>The network is only about 40 users so I'm ok with the viability of
>>NetBEUI, however I wondered what the opinion was on security
>>implications as a whole. Since there is no way to 'control' traffic at
>>a low level, (unlike TCP/IP and firewalls etc.) does this actually
>>increase risk, for example trojans 'information gathering' unseen via
>>NetBEUI?
>>
>>Any thoughts on the matter appreciated
>>
>>TIA
>>Craig
>
>
>
> If you have a firewall and are blocking 137-139 (netbios over tcp/ip) ports
> tcp and udp, you shouldn't have to bother doing that. First off, since it
> isn't routable, you still need tcp/ip anyways. So you're only increasing
> your network overhead, which slows things down.
> Just keep it normal with tcp/ip, and if you must, firewall your stuff from
> the outside, totally blocking those netbios over tcp/ip ports, and you
> should be fine.
>
>

which has the greater impact on performance, loading 2 protocols or
running a firewall? Of course depending on what you're doing you might
need a firewall anyway, or you can offload the firewall to a 'gateway'
machine-so your suggestion has considerable value, but I think it's
dependant on other circumstances than simply those described by the OP.

---

• Next message: bert: "possible backdoor/trojan contacting www.icq.com"
• Previous message: : "Re: Learning about Security and Firewalls"
• In reply to: NeoSadist: "Re: NetBEUI and security"
• Next in thread: craig: "NetBEUI and security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Why not use NETBEUI on Windows XP ?? ... Trusted zones means that firewall rules will be bypassed for any or certain ... not count on netbeui being a defense for such as long as smb connectivity ... while the connection is open. ... > Microsoft Networking components on my network. ... (microsoft.public.windowsxp.network_web) Re: Why not use NETBEUI on Windows XP ?? ... Trusted zones means that firewall rules will be bypassed for any or certain ... not count on netbeui being a defense for such as long as smb connectivity ... while the connection is open. ... > Microsoft Networking components on my network. ... (microsoft.public.win2000.networking) Re: Why not use NETBEUI on Windows XP ?? ... NETBEUI ... >small networks connected to the internet, ... >firewall, it seems to me that someone could format packets designed to ... >your network resources. ... (microsoft.public.windowsxp.network_web) Re: Why not use NETBEUI on Windows XP ?? ... NETBEUI ... >small networks connected to the internet, ... >firewall, it seems to me that someone could format packets designed to ... >your network resources. ... (microsoft.public.win2000.networking) Re: NetBEUI and security ... (unlike TCP/IP and firewalls etc.) does this actually ... > implications to make sure you know what you are getting into from a network ... >>I'm considering using NetBEUI on a small network with internet access, ... not bound to the network client or to file & printer sharing. ... (comp.security.firewalls)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)