can't you just beat up your brother? It won't fix your pc but it will probably make
you feel better. :o)
Chances are your bro is no genious and just using scripts (script kiddie) that other
people write for known exploits. If this is the case, then you probably haven't been
keeping up with your MS updates.
What connection did he get to your pc/server though? was he inside the network or
coming in from the internet. If he came in from the internet, what kind of connection
are you running (cable, DSL etc)? Do you have a hardware firewall between the
internet and your network? If not, you should. I make all my friend's/family who
have cable/DSL modems spend the money and install them. Very often they've asked me
to install them and just for gigles I turn on logging. Usually I see port scans
within 10 minutes of the firewall coming up on the cable/DSL modem. Pretty scary.
Whether your running MS or Linux, you should check for patches and updates EVERY DAY
for all your systems and especially those acting as servers of any kind.
There are also plenty of books on hacking that you can read to familarize yourself
with the techniques of hacking. This will help you understand what's going on and
better equip your network to deal with it. There are also many books on "box
hardening" AKA firewalling. If your going to runs servers available on the internet,
I suggest you read up on these things.
good luck.
-----Original Message-----
From: Stephen Craton [mailto:[EMAIL PROTECTED]
Sent: Sat 9/27/2003 4:31 PM
To: PHP List
Cc:
Subject: [PHP] IIS Ports
This is kind of off topic but kind of not, it's your call. My brother came
home this weekend from college this weekend acting all cool since he has
been learning to hack. He was telling us (the family) how he did random port
penetration on the home network and he said my computer was the most
vulnerable with around 25 ports open. I didn't really care until about an
hour later he hacked into my computer and then reset it causing me to loose
all my important information. I told my dad and my brother promptly lied
about anything of the sort.
What I want to know.since I know the majority of my ports open are from
IIS.is how I can close these. I only need my local server accessible by just
my computer but the entire network too.just not the network.
I thought the ports would just be open on my computer and not the hardware
firewall and everything. I went ahead and turned on the Windows XP firewall
but I've heard it really sucks. So is there any way of closing the IIS ports
so my brother, and any other hacker, can't get in here and cause havoc?
Thanks,
Stephen Craton
http://www.melchior.us -- http://www.melchior.us/portfolio
