U could also install a portscans detection tool as portsentry running on
unix (windows ???).
Duane Beck wrote:
TCP0.0.0.0:4450.0.0.0:0
LISTENING
UDP0.0.0.0:445*:*
The ports are not currently open to any foreign
machines; the
0.0.0.0:0 and
*:* are
TCP0.0.0.0:4450.0.0.0:0
LISTENING
UDP0.0.0.0:445*:*
The ports are not currently open to any foreign
machines; the
0.0.0.0:0 and
*:* are just showing the ports are listening for
connections
from -your-
machine to -your-
All of the ports are assocatiated with a program or
service running on your machine. For example, port 110
suggests that you have some sort of email program /
service running. The trick here is to find out which
programs are using which port, evaluate if they are
nescecerry, and close that
TCP0.0.0.0:4450.0.0.0:0 LISTENING
UDP0.0.0.0:445*:*
The ports are not currently open to any foreign machines; the
0.0.0.0:0 and
*:* are just showing the ports are listening for connections
from -your-
machine to -your- machine, and it's
try use the filter in tcp/ip porperties...
-Mensagem original-
De: phiber2001 [mailto:[EMAIL PROTECTED]]
Enviada em: Quarta-feira, 12 de Dezembro de 2001 00:28
Para: [EMAIL PROTECTED]
Assunto: Closing open ports
These are ports that are open in one of my w2k [ntfs] professionals
First thing to do is get a copy of fport from foundstone(.com look
under tools). That will tell you what the program is that has the
port open. Then mess with that program (or the OS in some cases)
to get the port to close. If you really want to know what kind
of data is going through those
Hey
Check out grc.com from memory there is a good programt here for locking
ports on windows.
Iain McAleer
- Original Message -
From: phiber2001 [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, December 12, 2001 11:28 AM
Subject: Closing open ports
These are ports
These are ports that are open in one of my w2k [ntfs] professionals
machines. this pc runs 2 firewalls and an ids with a real time virus
guard. I want to make some sense out of this and want to know how to close
these (only the malicious like 445) ports and how to do further analysis on