Messenger Service used for SPAM
From: Rob Pagé (rob123.page123_at_etech123results.com)
Date: 01/14/04
- Next message: Marina Roos: "Re: service pack 4 restart the machine in loop"
- Previous message: Rmoe: "Windows 2000 passwords"
- Next in thread: Karl Levinson [x y] mvp: "Re: Messenger Service used for SPAM"
- Reply: Karl Levinson [x y] mvp: "Re: Messenger Service used for SPAM"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 14 Jan 2004 12:51:30 -0800
I've read the Q/A regarding this issue and I have since
disabled the messenger service and am starting to
implement the solution with my clients. However the
document also indicated that the I should be blocking
ports 135, 137, 138, 139 & 445. The troubling thing for
me is that I do have a firewall in place and the only
ports that I have forwarded to this server is 1723. I
have other ports open but they are forwarded to our web
server (80, 21, 25, 443, 8080) and no message has ever
shown up on this server.
Is there a new problem with the messaging service where
it is listening on other ports or has there been a
compromise on the server? Is anybody aware of this
problem? I am concerned that I may be dealing with a
breach and would appreciate some assistance.
If you need to e-mail me directly, just remove the
numerics from my e-mail address.
Thanks
Rob Pagé
- Next message: Marina Roos: "Re: service pack 4 restart the machine in loop"
- Previous message: Rmoe: "Windows 2000 passwords"
- Next in thread: Karl Levinson [x y] mvp: "Re: Messenger Service used for SPAM"
- Reply: Karl Levinson [x y] mvp: "Re: Messenger Service used for SPAM"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
