Well what version of Windows are you running? NT, 2K, XP etc. Have you looked at what ports are open? What services do you need to run? Obviously IIS to serve up web pages, but what else is running? SMTP, FTP etc? Do you need those other services? If not turn them off...
NT :: Administrative tools / services / locate service corresponding to port you wish to close and set to 'disabled' 2K :: Control panel / Administrative tools / services / locate service and set to 'disabled' XP :: Control panel / Administrative tools / services / locate service and set to 'disabled' Linux :: edit the file name xinet.d, init.d, ftpd, httpd, etc to disable from starting service A list of port assignments can be found here. http://www.iana.org/assignments/port-numbers Information on securing your box can be found here. http://www.securityfocus.com // recent exploits and tools to help secure your box http://www.nsa.gov/snac/index.html // for windows and linux HTH Jas "Stephen Craton" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] I'm not sure where he tried to find the ports that were open but I'd guess from his apartment in Lafayette. We have a hardware firewall protecting the entire network. We're connected with a cable line and I'm really clueless as to what to do. I run windows update every day to make sure I'm not lagging behind. So far I have no real enemies that want to hack me, but I'm bound to make some eventually. I'll probably end up getting apache sometime or something. Oh, and um, I would beat up my brother but he was in the military (he dropped out because of the 5am 5 mile runs) and he's 5 years older then me... Thanks, Stephen Craton http://www.melchior.us -- http://www.melchior.us/portfolio -----Original Message----- From: Jeff McKeon [mailto:[EMAIL PROTECTED] Sent: Saturday, September 27, 2003 4:10 PM To: Stephen Craton; [EMAIL PROTECTED] Subject: RE: [PHP] IIS Ports can't you just beat up your brother? It won't fix your pc but it will probably make you feel better. :o) Chances are your bro is no genious and just using scripts (script kiddie) that other people write for known exploits. If this is the case, then you probably haven't been keeping up with your MS updates. What connection did he get to your pc/server though? was he inside the network or coming in from the internet. If he came in from the internet, what kind of connection are you running (cable, DSL etc)? Do you have a hardware firewall between the internet and your network? If not, you should. I make all my friend's/family who have cable/DSL modems spend the money and install them. Very often they've asked me to install them and just for gigles I turn on logging. Usually I see port scans within 10 minutes of the firewall coming up on the cable/DSL modem. Pretty scary. Whether your running MS or Linux, you should check for patches and updates EVERY DAY for all your systems and especially those acting as servers of any kind. There are also plenty of books on hacking that you can read to familarize yourself with the techniques of hacking. This will help you understand what's going on and better equip your network to deal with it. There are also many books on "box hardening" AKA firewalling. If your going to runs servers available on the internet, I suggest you read up on these things. good luck. -----Original Message----- From: Stephen Craton [mailto:[EMAIL PROTECTED] Sent: Sat 9/27/2003 4:31 PM To: PHP List Cc: Subject: [PHP] IIS Ports This is kind of off topic but kind of not, it's your call. My brother came home this weekend from college this weekend acting all cool since he has been learning to hack. He was telling us (the family) how he did random port penetration on the home network and he said my computer was the most vulnerable with around 25 ports open. I didn't really care until about an hour later he hacked into my computer and then reset it causing me to loose all my important information. I told my dad and my brother promptly lied about anything of the sort. What I want to know.since I know the majority of my ports open are from IIS.is how I can close these. I only need my local server accessible by just my computer but the entire network too.just not the network. I thought the ports would just be open on my computer and not the hardware firewall and everything. I went ahead and turned on the Windows XP firewall but I've heard it really sucks. So is there any way of closing the IIS ports so my brother, and any other hacker, can't get in here and cause havoc? Thanks, Stephen Craton http://www.melchior.us -- http://www.melchior.us/portfolio -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
