Open ports ? - Any MS personnel ?
From: agpiah (agpiah@yahoo.com)
Date: 07/11/02
- Next message: David Nandell: "Re: New? IIS Vulnerability - Just took down my server"
- Previous message: Jeff Cochran: "Re: Security configuration steps for multiple site hosting"
- Next in thread: x y: "Re: Open ports ? - Any MS personnel ?"
- Reply: x y: "Re: Open ports ? - Any MS personnel ?"
- Reply: Richard Benack [MS]: "Re: Open ports ? - Any MS personnel ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "agpiah" <agpiah@yahoo.com> Date: Thu, 11 Jul 2002 06:25:56 -0700
First let me thank all those that replied to my original
post, I believe that I was not concise enough with my
question and therefore I am reposting (rather than
continuing the thread which is a long way down the list by
now)
My original message was :-
"Hi
I am attempting to harden an IIS server and the following
ports still remain open with the following programs
attached to them. Can anyone please explain :-
What these programs are associated to ?
Can I close them ?
What the effect of closing them would be ?
Port 80/TCP Inetinfo.exe (required for HTTP traffic)
Port 443/TCP Inetinfo.exem (required for HTTPS traffic)
Port 1026/TCP Inetinfo.exe (????)
Port 3456/UDP Inetinfo.exe (????)
Port 1025/TCP msdtc.exe (????)
Port 3372/TCP msdtc.exe (????)
Port 135/TCP svchost.exe (????)
Port 445/TCP ???? (????)
port 445/UDP ???? (????)"
I understand that I should put behind a firewall but I was
coming from an educational viewpoint, what programs are
causing the ports to open and what would the consequence
be of closing them (and how). Im just the kind of person
who needs to know why something is happening rather than
just how to workaround.
For example I understand that port 80 is opened by
installing the web server and is required for HTTP traffic
and closing would therefore stop HTTP traffic to my web
server. The same for port 443 (HTTPS traffic) but can I
close just this one port if HTTPS is not required (rather
than filter which requires me to say which ports I need
open, which I cant answer unless I know what all the ports
that are currently open are doing?) what program is
causing port 1025 to open etc...
Sorry for such a long message,
Regards
Agpiah
- Next message: David Nandell: "Re: New? IIS Vulnerability - Just took down my server"
- Previous message: Jeff Cochran: "Re: Security configuration steps for multiple site hosting"
- Next in thread: x y: "Re: Open ports ? - Any MS personnel ?"
- Reply: x y: "Re: Open ports ? - Any MS personnel ?"
- Reply: Richard Benack [MS]: "Re: Open ports ? - Any MS personnel ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
