Re: Win XP, NAT, DSL and File Sharing

From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 09/27/05 

Date: Mon, 26 Sep 2005 18:13:40 -0400

From: "QuickHare" <noone@home4comment.com>

Replieas are inline...

< snip >

>> Yes, it can be done safely.
>> To increase your security I always suggest blocking TCP and UDP Ports 135 ~
>> 139 and 445 on
>> *any* SOHO Router.
|
| I'm not too up with all my abbreviations. What is SOHO? I take it you mean the
| router is to block anything on the File and Print Sharing ports (the ones you
| listed) from crossing the boundary from local to internet connection?
|

SOHO -- Small Office Home Office.
Yes, specifically blocking those posrt will block NetBIOS over IP, RPC and SMB over IP.
Thus no MS Networking leaks out to the Internet and hackers and Internet worms (Sasser,
SDbot, Lioten, Blaster, etc.) can't get in.

>> Since you are running XP HE, I don't think admin shares like c$ are created so
>> you will have
>> to actually share the root of drive "C:". Just make sure both PCs have the
>> same named
>> account and the same password and you will access data with no problems. I do
>> suggest that
>> you use passwords on all accounts, disable the "guest" account and use strong
>> passwords on
>> the accounts.
|
| When I shared before (for a few minutes to transfer a few files), I had FAT32 on
| computer "B". I managed to copy into it from "A", but not the other way round.
| Was this because Windows didn't let me access an NTFS filesystem from a FAT32 or
| something?
|
| I have used the same password, which is strong, and the Guest is off. I've set a
| strong password for the Admin account. Some accounts do not have passwords as it
| is a shared machine. Is it still safe considering the IP filtering the firewall
| will be doing?
|
| QuickHare
|

No. Once you setup F&P Shares the OS handles File Allocation therefore it doesn't make a
difference if the PC/notebook is NTFS or FAT32.

I suggest all accounts have passwords. It is the safe way to compute. One must *always*
practice Safe Hex. Having a FireWall on the LAN/WAN will help with Internet intrusions but
it does nothing for security on the LAN side of the Router. 

-- 
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

Relevant Pages

  • Re: Elementary question about internet connection sharing of two compu
    ... I can't turn off the router, even if this is a safe practice, ... since my phone service is Internet enabled. ... can safely disenable and enable the connections of my two computers. ...
    (microsoft.public.windowsxp.network_web)
  • Re: Remore Activesync
    ... I do not know of a safe way to do this. ... router so the PC is accessible for specific ports to the internet. ... I have a broadband router and a Gateway PC running> WinXP. ...
    (microsoft.public.pocketpc.activesync)
  • Re: Sky Broadband + Linux
    ... And how do they know you are NOT using their router? ... Not found that bit out yet, but by all accounts they send them out ... They probably use the MAC number of the NIC on the internet side of the ...
    (uk.comp.os.linux)
  • RE: New users cannot access some parts of internal website
    ... I understand that the new accounts cannot ... Uninstall Internet Explorer Enhanced Security by unchecking the same. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • Re: Music Industry faces opposition to disconnections
    ... music industry to have them close down the Internet accounts of alleged ... The British recorded music industry has welcomed indications from two leading internet service providers that they will suspend service to subscribers who use illegal filesharing networks. ...
    (uk.legal)