Megna Reddy,
It really isn't the port that is vulnerable. It is the
protocol/server/client that is vulnerable. If those vulnerable protocols
are run over TCP or UDP then the designer/installer of the protocol has the
choice of 65535 ports to use. I would refrain from allowing connections to
the standard NetBios ports (TCP 135, TCP/UDP 137-139). But, if I ran
protocol X on a UNIX server on TCP port 135 behind a firewall and the
firewall only allowed protocol X through TCP port 135 and only to the UNIX
server there wouldn't be any security risks associated with Netbios over
that port. The only security risks would be with protocol X. You need to
make sure your not placing a loose rule on your firewall that allows access
to more machines than intended and you need to make sure that the protocol
you don't want to let through your firewall isn't just running on another
TCP or UDP port that you do allow through.
Regards,
Jeffery Gieser
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
