Re: Hacker Account Lockouts
From: Jeff Cochran (jcochran.nospam@naplesgov.com)
Date: 03/17/03
- Next message: Robert Moir: "Re: Shared Drive security"
- Previous message: Jeff Cochran: "Re: IIS Lock Down Tool"
- In reply to: bookbrad: "Re: Hacker Account Lockouts"
- Next in thread: Bookbrad: "Re: Hacker Account Lockouts"
- Reply: Bookbrad: "Re: Hacker Account Lockouts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: jcochran.nospam@naplesgov.com (Jeff Cochran) Date: Mon, 17 Mar 2003 19:32:18 GMT
>I'm just wondering which service I could disable to better prevent hackers
>from possibly viewing my usernames - or other such system info. (Without
>making my system dysfunctional. :)
Probably talking about NetBIOS ports 137-139. You can't usually
disable the service, but you can unbind it from outgoing interfaces.
If you're running a workstation version of the OS, you can remove the
Server service and run fine, effectivley blocking these attempts, but
you also lose the ability to share drives or printers, plus some other
things you'll never likely need.
>(I'm still trying to learn ports, and everytime I try locking them down via
>my firewall software, I eventually get overzealous and lock out some
>necessary application.)
Best method is to use a firewall, lock down everything, then when
something is blocked, check the logs and open just that. Even if you
choose to block ports, block all and let only those you want through.
Jeff
- Next message: Robert Moir: "Re: Shared Drive security"
- Previous message: Jeff Cochran: "Re: IIS Lock Down Tool"
- In reply to: bookbrad: "Re: Hacker Account Lockouts"
- Next in thread: Bookbrad: "Re: Hacker Account Lockouts"
- Reply: Bookbrad: "Re: Hacker Account Lockouts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
