Re: Security for stand alone computer.
From: john humble (humbleton@yahoo.com)
Date: 12/10/02
- Next message: russandsandy: "Re: firewall recommendation!"
- Previous message: Prachait Saxena: "Re: firewall recommendation ! The results"
- In reply to: NeoSadist: "Re: Security for stand alone computer."
- Next in thread: David: "Re: Security for stand alone computer."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: humbleton@yahoo.com (john humble) Date: 9 Dec 2002 19:53:48 -0800
thank you for the response. i must admit that when people talk about
redoing the connections between tcp/ip and printing etc. i get
completely lost. I have no idea how to do this. I fear screwing up my
already screwed up computer. thanks anywho.
"NeoSadist" <neos@dist> wrote in message news:<uunldhisido576@corp.supernews.com>...
> "john humble" <humbleton@yahoo.com> wrote in message
> news:42f5b3ab.0212021302.78e38453@posting.google.com...
> > According to www.grc.com (masters of drama) my port 139 is open. this
> > according to them is no good. I don't know enough to know whether or
> > not this is so. The guy gives you 17 pages of details on how to block
> > the port from problems. If i am not on a network but have a dial up
> > access to an isp do i have to worry? I have a funny feeling that this
> > open port is being peddled by people who have opened too much "port"
> > as far as i can tell. THanks in advance.
>
>
> Easiest fix is getting a firewall.
> However, if you're on a home LAN, or network, this could cause slight
> problems for file sharing. Usually zone alarm can work just fine on a LAN.
> However, if you're not on a home LAN, or don't necessarily want to share
> files with other computers on the LAN, it's easier.
> There IS a way to customize win2k / winxp to not be using that port at all,
> however. You can use the tcp/ip filtering to only allow in tcp and udp
> ports that are associated with the internet:
>
> Port Name (Port Number) [Applications]
>
> Domain (53) [Windows]
> BootPS (67) [Windows]
> BootPC (68) [Windows]
> (The three above are for communication to self only)
>
> Internet Explorer:
> Gopher (70)
> HTTP (80) [web pages]
> FTP (21) [downloads]
> HTTPS (443) [secure web pages]
> RTSP (554) [for viewing most shows inside the browser]
> FTP-DATA (20) [downloads]
> IRC (194) [chat]
>
> Outlook Express:
> POP3 (110) [email]
> NNTP (119) [newsgroups]
> HTTP (80) [email using web content, and hotmail inside outlook]
> SMTP (25) [email]
>
> Real Player; Media Player; Quicktime
> RTSP (554) [real time streaming protocol: many players use it]
> HTTP (80) [web content]
> Real Time Networks (7070) [for real (tm) company's shows]
> Ports 6971-6999 (recommended config inside player also) [use this for all
> your players as their udp port range]
>
> MSN Messenger
> MSNP (1863) [MSN Messenger]
> HTTP (80) [web content]
> HTTPS (443) [log-in to hotmail]
>
>
> This is what I have running in my firewall right now, and I've had no
> connection problems. This config could be used in the tcp/ip filtering to
> allow only internet, and no LAN stuff like 137-139 netbios over tcp/ip.
> If using the tcp/ip filtering, be sure to specify all these ports as both
> udp and tcp. Both lists should contain all the port numbers, and should be
> identical. Here's a faster list if you want:
>
> 20
> 21
> 25
> 53
> 67
> 68
> 70
> 80
> 110
> 119
> 194
> 443
> 554
> 1863
> 7070
> 6971-6999
- Next message: russandsandy: "Re: firewall recommendation!"
- Previous message: Prachait Saxena: "Re: firewall recommendation ! The results"
- In reply to: NeoSadist: "Re: Security for stand alone computer."
- Next in thread: David: "Re: Security for stand alone computer."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
