Firewall ports to be blocked or watched
Moderator: Thanas
Firewall ports to be blocked or watched
Could anyone tell me or point me to a place that gives a basic rundown on which ports I should block or watch for? Like a list of common ports used by viruses, hackers, etc, etc.
What's her bust size!?
It's over NINE THOUSAAAAAAAAAAND!!!!!!!!!
It's over NINE THOUSAAAAAAAAAAND!!!!!!!!!
-
Crayz9000
- Sith Apprentice
- Posts: 7329
- Joined: 2002-07-03 06:39pm
- Location: Improbably superpositioned
- Contact:
Basic Windows ports that should NEVER be open to the Internet:
135 (Remote Procedure Call)
139 (NetBIOS Session)
445 (Windows NT NetBIOS something or another)
5000 (Universal Plug-and-Play)
135 (Remote Procedure Call)
139 (NetBIOS Session)
445 (Windows NT NetBIOS something or another)
5000 (Universal Plug-and-Play)
A Tribute to Stupidity: The Robert Scott Anderson Archive (currently offline)
John Hansen - Slightly Insane Bounty Hunter - ASVS Vets' Assoc. Class of 2000
HAB Cryptanalyst | WG - Intergalactic Alliance and Spoof Author | BotM | Cybertron | SCEF
John Hansen - Slightly Insane Bounty Hunter - ASVS Vets' Assoc. Class of 2000
HAB Cryptanalyst | WG - Intergalactic Alliance and Spoof Author | BotM | Cybertron | SCEF
-
Darth Wong
- Sith Lord
- Posts: 70028
- Joined: 2002-07-03 12:25am
- Location: Toronto, Canada
- Contact:
Use a "default deny" policy instead of "default allow". Pre-emptively block EVERYTHING right off the bat, and then open up specific ports that you need, one at a time. For example, if you play a particular game and it needs an open port, find out what the port number is and then open up that specific port. That's much safer than trying to guess what ports are likely to be attacked.
"you guys are fascinated with the use of those "rules of logic" to the extent that you don't really want to discussus anything."- GC
"I do not believe Russian Roulette is a stupid act" - Embracer of Darkness
"Viagra commercials appear to save lives" - tharkûn on US health care.
http://www.stardestroyer.net/Mike/RantMode/Blurbs.html
-
White Haven
- Sith Acolyte
- Posts: 6360
- Joined: 2004-05-17 03:14pm
- Location: The North Remembers, When It Can Be Bothered
'deny TCP any any' is such a beautiful statement.
Seriously though, when in doubt, block ports, figure out what you broke, and then fix it.
Seriously though, when in doubt, block ports, figure out what you broke, and then fix it.
Out of Context Theatre, this week starring Darth Nostril.
-'If you really want to fuck with these idiots tell them that there is a vaccine for chemtrails.'
Fiction!: The Final War (Bolo/Lovecraft) (Ch 7 9/15/11), Living (D&D, Complete)
-
Vertigo1
- Defender of the Night
- Posts: 4720
- Joined: 2002-08-12 12:47am
- Location: Tennessee, USA
- Contact:
Note: On some occasions, ICQ will use port 5000 for inbound and outbound traffic.
"I once asked Rebecca to sing Happy Birthday to me during sex. That was funny, especially since I timed my thrusts to sync up with the words. And yes, it was my birthday." - Darth Wong
Leader of the SD.Net Gargoyle Clan | Spacebattles Firstone | Twitter
Leader of the SD.Net Gargoyle Clan | Spacebattles Firstone | Twitter
-
Dalton
- For Those About to Rock We Salute You
- Posts: 22640
- Joined: 2002-07-03 06:16pm
- Location: New York, the Fuck You State
- Contact:
I think there's a link in one of the stickies to a useful mini-tutorial on firewalls that Faram did.
To Absent Friends
"y = mx + bro" - Surlethe
"You try THAT shit again, kid, and I will mod you. I will
mod you so hard, you'll wish I were Dalton." - Lagmonster
May the way of the Hero lead to the Triforce.