Re: Unwanted Pop Up Ads
From: Shenan Stanley (news_helper_at_hushmail.com)
Date: Fri, 30 Jan 2004 12:29:43 -0600
> Don't understand what you want to tell me either. Is their something
> in my statement that you think is incorrect?
> I said that disabling a service don't make a system MORE vulnerable.
> Is that wrong, does it make system MORE vulnerable by disabling
> I'm sure of my knowledge and I AM security certified (ofcourse don't
> mean I'm a guru). But I do know some hacking too and therefore the
> holes in especially MS systems. I also pointed out the port to be
> closed, UNLESS you have applications in need of that port.
Although disabling the messenger service does not make the system "more
vulnerable" - you haven't made it any less vulnerable. You have taken away
a warning sign of the vulnerability. You gave - as I stated - an INCOMPLETE
In your original answer - you said NOTHING about disabling/firewalling off
the port in question:
> I think you're talking about advertisemant companies
> utilizing the messenger service for popups
> Not same as MSN). Go to Services and disable
> the MEssenger service, unless you're on a network
> and REALLY need the net send, etc..
It was not until someone else mentioned your mistake (in not also pointing
out to close the port) that you came back with this:
> Don't understand what you are talking about. Disabling
> services NEVER makes a system more vulnerable.
> Disabling port 135 (which is the port messenger service
> utilizes) is a better solution if you don't need it for some
> other app..
Where you mentioned disabling the port, but only after mentioning another
falsehood that disabling services (you did not specify what services - you
implied any/all services) never would make a system more vulnerable.. Never
say never - because if ICF is the only firewall I have and I disable the
service - I am more vulnerable.
Certified means you can pass a test - I have never been impressed with
What I am telling you is quite simple. If you are going to give an answer,
give a full answer and/or at least point to a web page where the poster can
get all of the facts.
The full answer to this problem is this: If you are getting Messenger
Service pop-ups, you are vulnerable to many more problems. It is highly
suggested you look into either using the firewall built into Windows XP
and/or install configure a third party firewall and/or setup a hardware
one - thus preventing the messages from ever getting to your computer in the
first place and better securing your machine over all. You can then
consider other options, such as turning off any services you do not need.
If you feel you do not need the messenger service - you could turn it off to
see if anything goes awry - if not - leave it off. Other services can be
tried in this way. For a list of XP services and what they do along with
opinions of someone else, please visit :
What I am critiquing is your original answer and then part of your second
response - both of which are not the earmarks of someone certified in some
sort of "security" as you claim to be. Confident in your knowledge is
fine - are you as confident in your ability to share your knowledge in a
fashion that others can understand and that gives them the full benefit of
-- <- Shenan -> --