Re: command needed to disable hidden admin shares

From: Fraser Mackie \(No Email\) (reply_at_newgroup.plz)
Date: 05/08/04 

Date: Sat, 8 May 2004 17:48:53 +0100

"Jason Wade" <savon1414_050404+gb@earthlink.net> wrote in message
news:pan.2004.05.08.07.32.29.987200.2625@earthlink.net...
> On Fri, 07 May 2004 22:34:52 -0500, Bill Sanderson wrote:
>
> > "Jason Wade" <savon1414_050404+gb@earthlink.net> wrote in message
> > news:pan.2004.05.08.01.17.28.967277.1003@earthlink.net...
> >>
> >> I need a simple command that might work like this
> >> C:\> shareconfig -disable C$
> >> C:\> shareconfig -disable D$
> >> [ chomp ]
> >
> > [ more chomping, mmm good ]
> >
> > net share <enter>
> > at a cmd prompt will show you what's there, and
> >
> > net share c$ /d (etc) will remove them.
> >
> > I get an error on IPC$, however, don't have a suggestion for that one.
> >
> >
>
> Awwww bloody right!
>
> That's exactly what I was looking for. I'm not at the computer
> right now, so I can't test it, but it looks like it fits
> perfectly.
>
> The IPC$ didn't work because, I think, it's required.
> No prob, I'll stop everything else.
>
> Another question:
>
> I've created an admin password on my father's xp machine that
> is Damn Hard to Guess (tm). So if an intruder connects to IPC$,
> in order to exploit it, they would have to first guess that
> password, right?
>
> --
> Jason Wade | I'm a .signature virus!
> savon1414_050404@earthlink.net | Copy me into your ~/.signature
> | to help me spread!
>

Do not trust windows direct to internet without some form of firewall.
Go download a free firewall like zonealarm.
An intruder would not connect to the IPC$, but run exploit code against it.
The pasword will not help, but a firewall will not allow the code to get to
the port unless you have told it to.

Relevant Pages

  • Re: command needed to disable hidden admin shares
    ... I still wonder how this intruder is getting to that point, ... >> I get an error on IPC$, however, don't have a suggestion for that one. ... > No prob, I'll stop everything else. ... > I've created an admin password on my father's xp machine that ...
    (microsoft.public.security.virus)
  • Re: loopback interface/Firewall/Winsock
    ... If the RPC programming model is appropriate to your design requirements, ... over LRPC will offer higher performance then raw ... IPC using TCP/IP over the loopback or raw IPC over local named pipes. ... any firewall (So any IPC/RPC based on window handle or network ...
    (microsoft.public.win32.programmer.networks)
  • Re: command needed to disable hidden admin shares
    ... >> I've created an admin password on my father's xp machine that ... So if an intruder connects to IPC$, ... > Do not trust windows direct to internet without some form of firewall. ...
    (microsoft.public.security.virus)
  • Re: Netzwerkeinstellungen bei deaktivierter Windows-Firewall
    ... Denn auch dafür gibt es analog Firewallanweisungen, ... Weil die Firewall z.B. einer DNS-Anfrage nicht ansieht, ... wuenschter IPC und erwuenschter IPC treffen koennte, ...
    (de.comp.security.firewall)
  • RE: IPC$ blocking
    ... NetBIOS port numbers reference: http://www.iana.org/assignments/port-numbers ... I am looking for a firewall that can control IPC$ resource (and all ...
    (Security-Basics)
Quantcast