Samba - microsoft-ds connection?
Hi, Sorry if the subject's a bit cryptic. It's because of my ignorance, here's what I do know. Have just installed FBSD 4.8 release from the mini-iso, my old install got messed up and got Samba 3.0.10 running. My win xp workstation is also my current gateway. Run a tcp monitor on that box called tcpview which displays active connections. Here's what I see for windows networking System:4TCP delliver:4885 swamisalami:microsoft-ds ESTABLISHED System:4TCP delliver:3031 penguin:netbios-ssn ESTABLISHED System:4TCP delliver:4852 eileen:netbios-ssn ESTABLISHED Swamisalami is my fbsd, penguin's my rh9 box running samba 2.x, eileen is a win me workstation. Delliver is my gateway box. What is microsoft-ds? Couldn't find anything about it in MS' knowledgebase. Marty p.s. yes I plan on moving my gateway to fbsd, but it's going to take some time for me to get there Marty Landman, Face 2 Interface Inc. 845-679-9387 Search & Sort Easily: http://face2interface.com/Products/FormATable.shtml Web Installed Formmail: http://face2interface.com/formINSTal ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Samba - microsoft-ds connection?
A good short description of the ms-ds protocol is given here: http://www.eventid.net/displayprot.asp?lic=19fdcf8&protocol=*&keyword=2000 Greetings Oliver Leitner Technical Staff http://www.shells.at On Sunday 23 January 2005 01:30, Marty Landman wrote: > Hi, > > Sorry if the subject's a bit cryptic. It's because of my ignorance, here's > what I do know. Have just installed FBSD 4.8 release from the mini-iso, my > old install got messed up and got Samba 3.0.10 running. > > My win xp workstation is also my current gateway. Run a tcp monitor on that > box called tcpview which displays active connections. Here's what I see for > windows networking > > System:4TCP delliver:4885 swamisalami:microsoft-ds > ESTABLISHED > System:4TCP delliver:3031 penguin:netbios-ssn ESTABLISHED > > System:4TCP delliver:4852 eileen:netbios-ssn ESTABLISHED > > > Swamisalami is my fbsd, penguin's my rh9 box running samba 2.x, eileen is a > win me workstation. Delliver is my gateway box. > > What is microsoft-ds? Couldn't find anything about it in MS' knowledgebase. > > Marty > > p.s. yes I plan on moving my gateway to fbsd, but it's going to take some > time for me to get there > > > Marty Landman, Face 2 Interface Inc. 845-679-9387 > Search & Sort Easily: http://face2interface.com/Products/FormATable.shtml > Web Installed Formmail: http://face2interface.com/formINSTal > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Samba - microsoft-ds connection?
it was said: >What is microsoft-ds? Couldn't find anything about it in MS' >knowledgebase. > >Marty Hello, It MS's Directory Service, what is usually called SMB. As long as it's between systems on your network, it's nothing to worry about. HTH, stheg __ Do you Yahoo!? Yahoo! Mail - Helps protect you from nasty viruses. http://promotions.yahoo.com/new_mail ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Samba - microsoft-ds connection?
At 08:08 PM 1/22/2005, stheg olloydson wrote: It MS's Directory Service, what is usually called SMB. As long as it's between systems on your network, it's nothing to worry about. Ahah, then maybe there is something to worry about. I'm quite sure my system's been hijacked in the recent past. And I've seen the ms-ds port being opened on a steady basis for outside connections. Guess if I used fbsd as my gateway then could close it up with ipfw, but for now I just unplug my dialup at night and close nasty looking connections by hand when I notice them. Marty Marty Landman, Face 2 Interface Inc. 845-679-9387 Search & Sort Easily: http://face2interface.com/Products/FormATable.shtml Web Installed Formmail: http://face2interface.com/formINSTal ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Samba - microsoft-ds connection?
it was said: > Ahah, then maybe there is something to worry about. > >Marty Hello, Yes, this is a well-known attack vector in the Windows world. Regardless of a gateway's OS, one should be running as good as possible firewall checking all incoming and outgoing packets. Windows machines in particular are targets and should be running anti-virus, spyware, and firewall software locally, as well, to add another layer of protection. Regards, stheg __ Do you Yahoo!? Yahoo! Mail - Helps protect you from nasty viruses. http://promotions.yahoo.com/new_mail ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Samba - microsoft-ds connection?
[EMAIL PROTECTED] wrote: > At 08:08 PM 1/22/2005, stheg olloydson wrote: > >> It MS's Directory Service, what is usually called SMB. As long as >> it's between systems on your network, it's nothing to worry about. > > Ahah, then maybe there is something to worry about. I'm quite sure my > system's been hijacked in the recent past. Once that happens the system is shot, the attackers bury so many back doors in the system that you will never find them all. Microsoft has a number of documents on how to secure their stuff on their website. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
