Re: help with SyGate needed
From: curious (heyimjustcurious_at_yahoo.com)
Date: 01/31/04
- Next message: Wiking: "I have a netgear fr114p router +ipsec"
- Previous message: Duane Arnold: "Re: ADSL -> Actiontec 1524 -> Eth-switch -> PCs"
- In reply to: Jarmo P: "Re: help with SyGate needed"
- Next in thread: Jarmo P: "Re: help with SyGate needed"
- Reply: Jarmo P: "Re: help with SyGate needed"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 31 Jan 2004 08:02:43 -0800
"Jarmo P" <a@nospam.b.invalid> wrote in message news:<bve4r4$3f1$1@phys-news1.kolumbus.fi>...
<snip>
> A few things.
<snip>
> Sygate firewall definately needs to disable 'Act as Server' option for
> Generic Host for Win ... = svchost.exe. It is a security risk !!!
>
> You should do it also to many other programs that popup, except messengers
> and other server rights needing programs that you need for those things.
> Safe is to disable that for all.
> Thing is, SPF gives them server rights by default, so you have to go and
> disable them all afterwards. Manually like I tell you below for svchost:
<snip>
Thanks for the instruction.
My problem is to differentiate which ones are the one I need and which
ones are not. Here is application Lists:
.....Internet Explorer\iexplore.exe
.....Messenger\msmsgs.exe: ???This thing likes to boradcast..
.....Microsoft Office\Office10\WINWORD.EXE
.....Spybot – Search & Destroy\SpybotSD.exe
The followings are inside WINNT folder:
..explorer.exe
..hh.exe
..System32\certsrv.exe
..System32\dfssvc.exe
..System32\DNS.EXE
..System32\DRIVERS\ndisuio.exe: I will BLOCK since I have no wireless
..SYSTEM32\dwwin.exe
..System32\inetsrv\inetinfo.exe
..System32\ismserv.exe
..System32\llssrv.exe
..System32\LSASS.EXE
..System32\lserver.exe
..System32\mqsvc.exe
..System32\msdtc.exe
..System32\mstask.exe
..System32\ntfrs.exe
..System32\NTOSKRNL.EXE
..System32\services.exe
..System32\snmp.exe
..System32\svchost.exe; I will disable as you suggested.
..System32\tcpsvcs.exe
..System32\telnet.exe
..System32\termsrv.exe
..System32\Windows Media|Server\NSCM.exe
..System32\Windows Media|Server\NSPMON.exe
..System32\Windows Media|Server\NSUM.exe
..System32\WINS.exe
> Sygate allows too much, it is a fine firewall, but for a newbie needs some
> configuration.
> About them trojan warnings, if you have open ports, the scan tells you about
> them, but no need to worry, they are propably just possible exploits, not
> meaning you have any. The site should have the explanation changed.
I did trojan scaningand it's clean.
- Next message: Wiking: "I have a netgear fr114p router +ipsec"
- Previous message: Duane Arnold: "Re: ADSL -> Actiontec 1524 -> Eth-switch -> PCs"
- In reply to: Jarmo P: "Re: help with SyGate needed"
- Next in thread: Jarmo P: "Re: help with SyGate needed"
- Reply: Jarmo P: "Re: help with SyGate needed"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
