Re: netbios question
From: David (davidwnh@adelphia.net)Date: 10/31/02
- Next message: David: "Re: ZA Conceptual Question"
- Previous message: mhicaoidh: "Re: ZoneAlarm v3.1.395"
- In reply to: : "netbios question"
- Next in thread: : "Re: netbios question"
- Reply: : "Re: netbios question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "David" <davidwnh@adelphia.net> Date: Thu, 31 Oct 2002 01:57:48 GMT
Everything depends upon your particular network setup. NetBios is used with
filesharing but is also used with other applications. If you have to have
NetBios enabled within your LAN for something so be it. At least disable it
from the internet at your perimeter and you may also want to uninstall it on
computers within your LAN that don't have any need for it. If your IIS
server does not have any other services requiring NetBios it is good to
uninstall it there also. The extent to which you need to disable NetBios
within your LAN is up to you. If you have a large internal network you
cannot dismiss the fact that internal users have been known to hack from
within. The statistics show that the majority of security "incidents"
originate from within. Don't under estimate the maliciousness of a
disgruntled employee! But as I said above the extent of concern depends on
many factors including how large your network is and how securely your
organization has set up its workstations so that the users cannot "misuse"
them.
Disabling NetBios from your web server is recommended, but can you do it? Do
you have other services running on it that need it? It is usually best to
isolate your web server from these types of services so that you can do so.
If your IIS server isn't running as a standalone server in the first place
you're open to a wide range of potential "holes" to start with.
"DX" <007@sxu.cjb.net> wrote in message
news:apnu5e$ioj$1@woodrow.ucdavis.edu...
> I have a web server running IIS with Win2k, and currently with netbios
> enabled. I have heard someone from this newsgroup said before that I
should
> "disable netbios on the web server."
>
> my questions are:
> 1). Is netbios bad in general? By enabling netbios, will it create
security
> holes?
>
> 2). Should I disable netbios on my web server without hesitance?
>
> 3). Should I also disable netbios for all my computers in our department's
> LAN?
>
> 4). What's the reason to leave netbios on?
>
> Thank you for your comments.
>
>
>
- Next message: David: "Re: ZA Conceptual Question"
- Previous message: mhicaoidh: "Re: ZoneAlarm v3.1.395"
- In reply to: : "netbios question"
- Next in thread: : "Re: netbios question"
- Reply: : "Re: netbios question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
