Selection of Ports for internal website

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ Security
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - Allow user to paste password / to save password terminal services W2k, W XP SE I want to allow users to save the password in their connection properties when connecting to SQL Server. This works fine on Win XP Advance server but not on the Win 2000 and Win XP SE. Is this a configurable option? Rafet Tag: Selection of Ports for internal website Tag: 70911
  - 2
    - Career Question Hello all, I am currently a desktop support technician that is looking to move into a different career area, namely a system administration/security type of position. What would be the best way to do so? I am currently A+ certified, and I plan on taking exam 70-270 (Windows XP) within the next month or so. I have 9 years of desktop support experience, and I am looking for a new challenge. Any advice would be very much appreciated. Regards, Cary Tag: Selection of Ports for internal website Tag: 70900
  - 3
    - good IDS site for beginners like me thanks :) Tag: Selection of Ports for internal website Tag: 70891
  - 4
    - Why are the recovery software so expensive? Are there any *free* software for file recovery? Thank you. Tag: Selection of Ports for internal website Tag: 70883
  - 5
    - How to tell the running process--csrss.exe is malicious or not? From the information about csrss.exe on the internet, it could be normal process or virus. But how can I find out its true attributes? By some specific software, or not? Thank you. Tag: Selection of Ports for internal website Tag: 70881
  - 6
    - Malicious microsoft scriptlet component in IE?! Hi, I found an active X, which was named as "microsoft scriptlet component", has been downloaded and started in the IE add-ons. Its related files is mshtml.dll. And I also noticed that in the IE add-ons, there are many unsolicited malicious ACTIVE X downloaded from various websites. In addition to that, an odd pop-up from IE always pops while I open the Outlookexpress. It reads "Do you permit the active things access to your computer? It could be do harm to your computer or leak your personal information". Besides, there is a fifth region which is called "your computer" added in the IE security settings( I have never seen the regions in the IE settings.) It seems that the problem is kind of related to the vulnerablity of IE (Please refer to the link: http://www.microsoft.com/technet/security/bulletin/MS00-055.mspx http://www.microsoft.com/technet/security/bulletin/ms99-012.mspx and http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0022) It is quite odd that my computer is installed with the latest version of IE 6 as well as its patches (SP2+updates). I used a software called safe xp (http://www.theorica.net/safexp.htm). Could the problem be caused by it? How can I prevent the active X from downloading? Please help me! Tag: Selection of Ports for internal website Tag: 70880
  - 7
    - Active Directory Hi, I have no real idea about Active Directory (what does it do, how is it used, what are it's requirements, restrictions, etc) and would like to get an idea. Can anybody tell me some sites with good information? Thanks. Tag: Selection of Ports for internal website Tag: 70877
  - 8
    - APPLICATION EVENT WARNING Hello fellow members. I am in need of your invaluable help once again. My computer is running Windows XP Home Edition. My computer is a stand alone home desktop computer, NOT connected to any network. Occasionally there is an event warning logged in the Application Log of the Event Viewer, found under the Administrative Tools in the Start Menu. This is the information given for the Event Warning: Source: WinMgmt Category: None Type: Warning Event ID: 63 User: "user name" Description: A provider, OffProv11, has been registered in the WMI namespace, Root\MSAPPS11, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests --------------------------------------------------------------------------------------- There are always two Event messages logged at the same time every time. I have Microsoft Office 2003 Student and Teachers Edition installed. I assume that the provider, OffProv11, is from Office 2003. MY QUESTIONS: What is this error? What is causing this error? What is the "WMI namespace"? How can I stop this error from happening again? Is this a serious secruity threat? Can someone please help me correct these errors. I am NOT a computer expert so for me to understand your generous help and advice, please do not use technical computer language and acronymes. I am very grateful for any help and advice you generous people out there are willing to give me!!! :-) :-) THANK YOU, Techno Phobe. Tag: Selection of Ports for internal website Tag: 70872
  - 9
    - CA in Win 2K3 and Radius Authentication Hi All, I need to authenticate wireless clients through RADIUS which I have setup on a Win2K (with SP4). I guess I need to setup a CA for this purpose. Our domain (in native mode) is running wit 2 DCs (one win2K and the other Win 2K3). I have installed RADIUS on the Win2K DC. When I install an Enterprse CA on Win2K server, does that all comunications with the Win2K3 server require certificates as well? All want is ONLY to autehnticate the wireless clients. TIA Patrick Tag: Selection of Ports for internal website Tag: 70871
  - 10
    - Help in installing Norton system works cd 2002 or any?? hello, i have a XP home edition os, and i want to install a system works cd 2002 or i also tried a 2003, and it won't install. it reads the cd and shows the opening page. but it then closes. i can see the files under explorer. and have tried from there files too. but no sucess. and just some FYI, i have installed microsoft 2000 version of office and installed auto and also installed mavis becan, and that installed just fine. so am i missing somthing from the norton cd for this to install? i went to the norton web site but can't get no help there. andu ideas or suggestions?? more FYI,, this pc is 3 years old. and i uninstalled the much older PC-Cillion 2000 version. so this is my sis. pc and was tryign to help her. so any help is much appreciated.. dave Tag: Selection of Ports for internal website Tag: 70865
  - 11
    - Nopir-B worm... Now, who really thinks this was NOT sponsored by the Music Industry? http://www.securityfocus.com/news/10985?ref=rss Michael -- "Microsoft isn't evil, they just make really crappy operating systems." - Linus Torvald Tag: Selection of Ports for internal website Tag: 70864
  - 12
    - trojan-spy turned my computer on this morning and had a blue screen instead of my wallpaper. Message on it read Fatal error in IE Trojan-spy.HTML.Smitfraud.c i ran microsoft antispyware beta and Kaspersky AV but neither picked it up or cleaned it. PC seems to be working fine apart from the message i get everytime i startup Any ideas on how to get rid of it. I have firewall on, realtime protection etc Tag: Selection of Ports for internal website Tag: 70861
  - 13
    - Research Linux vs Windows security I am trying to locate the critera which is used to test the operating systems securities and the methods, proceedures, and environments which are used in testing. Can anyone help me? Tag: Selection of Ports for internal website Tag: 70858
  - 14
    - unable to connect to server I have xp /SP1 on my pc. I used to go a chat room but recently I am unable to do so as I always get message: unable to connect to server Firewall client is disabled. This all happened when I connected to work recently and I guess some settings from my PC got in sync with work settings. If this is not correct newsgroup, sorry, if I can get some directions as where to ask for help. I tried to fix this myself but I am not that good with all these settings. thanks Tag: Selection of Ports for internal website Tag: 70844
  - 15
    - did any body watched the "Robots City" i'm look for a funny song in it!!! it's play before the Robots City's New Manager meet his Monster Mother,in the under ground factory.(with Drum,drum..drum.....)cool.... i like it! i looked round,but i didn't get that song's name.... can anybody help me!!! thanks!u r so kind! Tag: Selection of Ports for internal website Tag: 70840
  - 16
    - what is (ftpwin32.exe) I would like to know what it is and should i be worried about it. Can't find any info about it on my Process Patrol.....thanks Tag: Selection of Ports for internal website Tag: 70828
  - 17
    - Antispyware beta- virus after downloading Has anyone had this problem when they downloaded the antispyware (beta) software? When I downloaded it, my Norton antivirus popped up saying it has found bloodhound.exploit6 on my computer. Anyone had this problem? Tag: Selection of Ports for internal website Tag: 70817
  - 18
    - Giving Limited Users a Little More Authority/Permission? Microsoft Gurus: I have Windows XP with Service Pack 2, Internet Explorer Version 6. I created a limited user called "Bill" (Start -> Settings -> Control Panel -> User Accounts). Unfortunately, it is too limited. I would like for "Bill" to be able to: 1. change his IE6 home page to a local file, e.g., file://C:/index.htm, 2. change his IE6 security settings (Tools -> Internet Options -> Advanced tab -> Security section) to "allow active content to run in files on My Computer". He can go through the motions of doing both, receives no error messages, but his changes do not take. How can I start with a limited user and selectively add one permission/authority at a time? Thanks. Tag: Selection of Ports for internal website Tag: 70815
  - 19
    - why got \??\ in the path ? Hi Experts: Wrote a small program on XP to get a list of running processes. I used the GetModuleFileNameEx, EnumProcessModules to go through each process and get the process path, most of the returned path is ok, but noticed strange one below: \??\C:\WINDOWS\system32\csrss.exe (0x4A680000) Anyone knows why there is \??\ at the front of the path? Does that mean the csrss.exe is a virus? In task manager, the csrss.exe is running and cannot be stopped. Any thought is appriciated. Thanks In Advance! Polaris Tag: Selection of Ports for internal website Tag: 70804
  - 20
    - Green Admin - Brute Force Attack - Pls Help I am a pretty good desktop tech who has been thrust into server admin. I have 2 domain controllers, one 2003, one NT and support the finance departments of a small University. I have enabled strong passwords on the 2003 server and have setup lockouts on both after 5 incorrect attempts for 5 minutes. Multiple machines on campus, not under my control, have been infected or otherwise compromised and are walking through my userbase attempting logins and locking out the accounts on both machines. I recently disabled anonymous SAM listing apparently to no avail. I am asking for any insight, help, suggestions, or anything I can do other than simply letting these attemps go rampant and disabling lockout. Even though we use DHCP (with quite long leases) I am considering blocking all TCP except from each of my users (approx 70) as this situation as it stands is unacceptable and adding an IP every week or so is much better than the ordeal I endured all day today. Thank you for your help. Underfire Tech Tag: Selection of Ports for internal website Tag: 70803
  - 21
    - PASSWORD PROBLEM PLEASEEE HELPPPPPP I changed the password for my user account on windows xp home edition and now i forgot it. the password hint i used does not help and mine is the only computer administrator account!!!!!!!!!! what do i do!? Tag: Selection of Ports for internal website Tag: 70799
  - 22
    - Windows Server 2003 SP1 DCOM using RPC Proxy not working, rpcping For a customer case, I need to get DCOM running on top of HTTPS between two Windows Server 2003 machines. I have successfully installed two Windows Server 2003 servers with RPC Proxy installed. Also these two servers have IIS running both with a certificate from the same CA - and they trust this CA. I am able to use the resource kit utility rpcping to verify that the RPC works on top of HTTPS. This works without any problems. So basically there is a hole through Now I want to verify that DCOM also works on top of HTTPS. I use the wbemtest or wmic.exe utility to verify this. When I try to connect from the one server using something like wmic /node:<othernodefqdn> /user:<othermachine>\<remoteuser> os I get an error saying that the RPC server is not available. A netmon trace shows no packages when I get this error. In this case I have only "Tunneling TCP/IP" installed as protocol under dcomcnfg, whereas packages are being sent when and it tries with normal DCOM/RPC/TCP ports when I also enable the use of connection oriented ports. How can I test that DCOM also works. I used to have this working on Windows 2000, where I got wbemtest.exe working on top of HTTP without any problems. I have read various KB's on the topic and I don't think I have any permission problems, but something is missing, - either in my understanding or in the configuration. Please advice kind regards Claus Claus Jespersen -- Claus Jespersen Tag: Selection of Ports for internal website Tag: 70791
  - 23
    - someone accessing my computer I am a novice computer user but believe someone other than myself and without authoization is accessing my computer to include emails, IM's websites etc. Can anyone tell me how I can check this out other than running spyware software? Tag: Selection of Ports for internal website Tag: 70790
  - 24
    - Audit Logon Failures I am trying to audit logon successes and failures for my Windows 2003 domain. At the domain controller, the Security log is set to audit logon successes and failures, but only logon successes show up in the log. -- Carolyn Tag: Selection of Ports for internal website Tag: 70786
  - 25
    - IDS hello looking for a good IDS site for beginners in IDS thanks!!! Tag: Selection of Ports for internal website Tag: 70783
- Next
  - 1
    - Encryption Hi all, Just being told with the idea of encryption. However, it's really too new to me. I got a couple questions which I don't have a clue. What actually is that in a Win 2k machine? What does it do? Is currently the highest level of encryption in windows 128 bits? Is PGP a good software doing that? Or it's actually something else? TIA, Alex Tag: Selection of Ports for internal website Tag: 70775
  - 2
    - REQ Opinions on User/PWD functionality Nearly every where you see an attempt at security, you'll see the user name in plain text, and a password obscured by asterisks. I am wodering if there is currently any valid reasons why there are two parts to gaining access. Why not just have a hidden password, which some administrator associates with a user? Certainly name/password conflicts shouldn't be a problem when only 5 characters (letters or numbers) yield over 60 million combinations. 7 characters yields a permutation of over 78 billion combinations. I am looking to reduce the amount of time I spend at work entering in my username and password for the data entry programs I have to use. Entire groups of people have to go through this same routine, several times a day, and I'd like to suggest some way to remove this task, or to make it less of a time consuming activity. We already use hand scanners for a significant amount of repetative data so that would be one method, to provide the bar codes for each user and their password. But I'd like to gain a little knowlege on why we need the user name part, if just the password can be used to identify the user. Simply reducing the requirement to just the password would cut the time in half. So I wonder if there are valid concerns where the username part aids in security. ??? LFS Tag: Selection of Ports for internal website Tag: 70773
  - 3
    - Installing multiple SSL certificates.... Hello, I am currently hosting several web sites on a Win 2k3 server with IIS 6.0. I have a dynamic IP address and use host header names for identifying web sites. I have aneed to install SSL certificates for different web sites I am hosting. What do I need to accomplish this? Between information I have read and researched on the Interent, I am either confused or getting conflicting information. -- Thanks for your time, Mizer Tag: Selection of Ports for internal website Tag: 70772
  - 4
    - Unable to subscribe to e-mailed security alerts From: Thomas L. Jones, Ph.D., Computer Science The subject is the page at http://www.microsoft.com/security/default.mspx Specifically, one is invited to sign up for security alerts. However, I am unable to sign up for security alerts vis e-mail at DrJones6x4nospam@alium.MIT.edu Please note that I do not have MSN Messenger. Please fix. Thomas Jones Tag: Selection of Ports for internal website Tag: 70771
  - 5
    - Chinese characters appearing in database. Does anyone know or have heard of Chinese characters mysteriously appearing in an Access database? We have had an instance of this occurring, and I want to get some input before I pull the virus panic alarm. Any information that I could come up with would be greatly appreciated. Tag: Selection of Ports for internal website Tag: 70758
  - 6
    - Delegate the ability to unlock accounts Hello, I was wondering if it is possible to delegate the ability to unlock accounts in AD? If it is possible, would you tell me how to do this? I can't seem to find the option that enables this. Thank you, Mark Tag: Selection of Ports for internal website Tag: 70756
  - 7
    - Win XP Pro firewall log Hi! I was wondering if anyone could tell me about the following entries from the windows firewall log from a Windows XP Pro machine on my internal network. I keep seeing these dropped packets, and I am wondering what could be causing them...... In particular, I am wondering what the RECIEVE means, what causes it, and if I need to take further action. Thanks in advance! 2005-04-19 21:47:05 DROP UDP 0.0.0.0 255.255.255.255 68 67 347 - - - - - - - RECEIVE 2005-04-19 21:48:24 DROP TCP 10.10.1.1 10.0.0.22 139 1422 44 AP 686097137 3956186526 17448 - - - RECEIVE 2005-04-19 21:50:03 DROP UDP 10.10.1.1 10.255.255.255 138 138 229 - - - - - - - RECEIVE 2005-04-19 21:54:20 DROP UDP 10.10.1.1 10.255.255.255 138 138 235 - - - - - - - RECEIVE 2005-04-21 13:40:07 DROP UDP 10.0.0.9 10.255.255.255 138 138 238 - - - - - - - RECEIVE 2005-04-21 13:40:29 DROP UDP 10.0.0.22 255.255.255.255 68 67 328 - - - - - - - RECEIVE 2005-04-21 13:40:32 DROP UDP 10.0.0.22 255.255.255.255 68 67 328 - - - - - - - RECEIVE 2005-04-21 13:41:02 DROP UDP 10.0.0.13 10.255.255.255 138 138 229 - - - - - - - RECEIVE 2005-04-21 13:41:11 DROP UDP 10.0.0.19 10.255.255.255 138 138 229 - - - - - - - RECEIVE 2005-04-21 13:41:12 DROP UDP 10.0.0.10 10.255.255.255 138 138 229 - - - - - - - RECEIVE 2005-04-21 13:41:26 DROP UDP 10.10.1.1 10.0.0.22 137 137 90 - - - - - - - RECEIVE 2005-04-21 13:42:24 DROP UDP 10.0.0.12 10.255.255.255 138 138 229 - - - - - - - RECEIVE 2005-04-21 13:42:47 DROP UDP 0.0.0.0 255.255.255.255 68 67 346 - - - - - - - RECEIVE 2005-04-21 13:42:52 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:53 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:53 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:54 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:55 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:56 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:56 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE 2005-04-21 13:42:57 DROP UDP 10.0.0.26 10.255.255.255 137 137 96 - - - - - - - RECEIVE Tag: Selection of Ports for internal website Tag: 70755
  - 8
    - remote downlevel document Hi, our printers suddenly print some nonsense characters on papers and this is logged as "remote downlevel document owned by x printed x pages/bytes..." on system event log of print servers with event ID 10. The users are just a few persons we saw from log detais and they all have local admin rigths on their domain machines. We scanned for virus/worm on their machines, but nothing is detected (machines are clean). we also scanned for spywares with MS anti spyware beta and spybot and they detected nothing. Now what can be the problem of this strange printing attempts?? Printing attempts start nearly synchronously from these few users who are located at different sites. We still suspect of some triggering malicious mechanism embedded in some software... Any help/idea would be very userful. thanx. atx. Tag: Selection of Ports for internal website Tag: 70754
  - 9
    - ATTN McAfee VirusScan v9 users A recently released patch is causing problems in OE. See this thread in McAfee Help Forums: http://forums.mcafeehelp.com/viewtopic.php?t=45852 -- ~Robear Dyer (PA Bear) MS MVP-Windows (IE/OE) & Security Tag: Selection of Ports for internal website Tag: 70742
  - 10
    - High importance (for me at least jejeje): Audit tool Hi all!!! I am working as System Administrator in a company and i am going to have an audit next month. The problem is that they want me to have a list with all files an user can access. I think it is not very common, but who listen to me???? my boss???? jejeje. So i have to find a solution. Is there any tool which look through the file system and selecting an user gives you the files and folders where he/she/it has access?????? or something like that Thanks a lot in advance Diego Tag: Selection of Ports for internal website Tag: 70735
  - 11
    - free(?) personal firewall I've been using free Zone Alarm for a while and like it - and also Sophos AV which I want to keep. However there is an issue with Sophos 5 in that Zone Alarm won't let it connect to auto-update and so I have to drop the firewall for the brief time I need to run updates. Any recommendations for a firewall which will provide as much (if not more) protection as ZA, but which will allow Sophos traffic? Tag: Selection of Ports for internal website Tag: 70734
  - 12
    - CounterSpy I've been reading some good reviews about anti-spyware software CounterSpy from Sunbelt Software. Anyone here use it or heard any negatives? Tom "Pepper" Willett Microsoft MVP - FrontPage Tag: Selection of Ports for internal website Tag: 70733
  - 13
    - multi DSL Lines work on PC? does it can works? a pc with 2 or more DSL lines.get more band.(my english is poor,sorry..) if it's could be,how??? Tag: Selection of Ports for internal website Tag: 70715
  - 14
    - AD question Is there a way a user, who is not an administrator of any kind can do a query to see which groups they are a member of? Someone asked me today out of curiosity so I figured I would ask. Tag: Selection of Ports for internal website Tag: 70709
  - 15
    - Please recommend some *free, popular and good* key management software Thank you. Tag: Selection of Ports for internal website Tag: 70708
  - 16
    - Active X Am using Windows XP Home SP2. Am trying to watch a video from a site that I know is OK (http://www.bitoblue.com/allie.html). Internet Explorer will not allow me to see it, get an error message about active x. Can someone tell me how to set the control to let me be able to watch it. I have searced for similar but cannot find anything for SP2. Rather new so layman type instructions would be appreciated. Tag: Selection of Ports for internal website Tag: 70707
  - 17
    - Password filter not applied I wrote password filter dll (pwfilter.dll). I have copied on domain controller system32 dir. Modified the registry (hkey_local_machines\system\currentcontrolset\control\lsa-(notification packages). Password must meet complexity a requirement is on. But when I try to change or reset the password it applies default complex policy. Customize policy is not in effectâ?¦ Is there anything I am missing? GTD Tag: Selection of Ports for internal website Tag: 70700
  - 18
    - Security on Windows 2003 Server I believe that I have a corrupted secedit.sdb file. In the event log I amgetting the error message error 1208: an exteneded error has occured every five minutes. I started to receive this error message after getting 4 errors in the Application Error log as follows: 1st - service[676] An attempt to move the file "C:\Windows\Security\edb.log" to "C:\windows\Security\edb00002.log" failed with system error 183 (0x000000b7): "Cannot create a file when that file already exists.". The move file operation will faile with error -1022 (0xfffffc02). 2nd - service[676] Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corruped. Error -1022 3rd - service[676] The logfile sequence in "C:\Windows\Security\" has been halted due to a falal error. No further updates are possible for the database that uses this logfile sequence. Please correct the problem and restart or store from backup. 4th - service[676] Unable to rollback operation #8879 on database C:\Windows\Security\Database\secedit.sdb. Error -510. All future database updates will be rejected. I verified that the disk isn't full and did not see a duplicate log file that it claims to be copying it to. The only information that I could find regarding this issues is Article Q324383. I am hesitant to follow the one procedure where you rename the secedit.sdb file and recreate it. I did move all of the log files into a oldsecurity folder as it stated and restored the secedit.sdb file from a recent backup; however, this did not help any. I also made a copy of the secedit.sdb file and ran "Security Configuration and Analysis" against this file and received the "Error 108: An exteneded error has occured" Any suggestions? Tag: Selection of Ports for internal website Tag: 70698
  - 19
    - MS AntiSpyware "This version ... has expired as of May 7, 1931" I installed the current Beta 1.0 on April 20, 2005. Attempted to run it and received a message box: "This version of Microsoft AntiSpyware has expired as of May 7, 1931." and further text suggesting I contact MS for an update. I've been working with a representative from Microsoft PC Security and he had not heard of this particular message from the MS AntiSpyware program. On this XP Pro machine, he had me run a scf /scannow, a full system scan in Safe Mode using Norton AntiVirus Pro 2004, and we examined each task in Task Manager. The four tasks the technician flagged as indicated a possible virus were: mdm.exe and inetinfo.exe, which are both MS debugging programs that wouldn't normally be running; rundll32.exe, which might or might not be being used by a virus; and opware32.exe. The last one is an Omnipage program, and I do have Omnipage on my system. Given the checking of core Windows files, the clean virus scan, the correct system clock (!), the having in place of Automatic Updates for Windows and Norton over the last year or so, as well as being behind a D-Link firewall, would anyone else have any other ideas why the buggy message box? The only other clue I have of some system problem is during shut down. I get one or two message boxes saying Explorer is needing to be shut down, they are not terminating normally, even though I have closed the application. Thanks for any help regarding this. Ian J. Tag: Selection of Ports for internal website Tag: 70696
  - 20
    - log files Is there a log file any place in 2000 server that will show me when a user logs on or logs off? Tag: Selection of Ports for internal website Tag: 70694
  - 21
    - Is an OS installed vulnerable software which has open source code secure? Could the security of OS be affected with the vulnerable software which has open source code? Or it is insecure just when I use the software? Thank you. Tag: Selection of Ports for internal website Tag: 70684
  - 22
    - help with the use of PGP 8.1 freeware Hi, I installed the freeware. But I can not use the program.A popup said "cannot establish connection with pgp sdk service" I reinstalled it. But it didn't work. Could you please tell me what's wrong? Do I have to delete it and run an reinstallation? Thank you. Tag: Selection of Ports for internal website Tag: 70683
  - 23
    - Security Bulletin Summaries and Update Numbers Once again in the April Security Summary some of the Update Numbers listed are not those which are actually downloaded by Windows Update. For example MS 05-023 shows Update Number 890169 but this seems really to be a cover for updates 887977, 887978 and 887979, one of which will be downloaded depending on which version of Word is in use. Would it not be a good thing for customers who receive the Monthly Summaries to be able to check off the updates downloaded by Windows Update directly against those listed in the Summary, rather than delving into various Bulletins to find the relevance of the update which Windows Update produced ? Could the Monthly Summaries not be expanded to show the numbers of the updates which will *actually be downloaded*, preferably against the product affected ? I have made this point before by e-mail to Security Response but was told this was a 'technical support issue' so I didn't get too far. Regards, Tom Allen Tag: Selection of Ports for internal website Tag: 70682
  - 24
    - Is there any other free and public newsgroups discussing security-related problems? If there is, please tell the NNTP server address and the newsgroups. Thanks. Tag: Selection of Ports for internal website Tag: 70678
  - 25
    - Is there any other free and public newsgroups discussing security-related problems? If there is, please tell the NNTP server address and the newsgroups. Thanks. Tag: Selection of Ports for internal website Tag: 70677

I have an intranet website that is currently assigned as Port=12345, TCP. I
see that port was exploited by trojans in the past and I thought it would be
good idea change this to a less known number. Do you think that makes sense
?

Also, is there any preference (security wise) when assigining ports, or I
should just pick whatever from 49152 thru 65535 and that 's it ?
Assume this is an internal website.

The Well Known Ports are those from 0 through 1023.

The Registered Ports are those from 1024 through 49151

The Dynamic and/or Private Ports are those from 49152 through 65535

Top

Re: Selection of Ports for internal website by Mark

Mark
Mon Apr 25 19:21:51 CDT 2005

... why isnt it on port 80?

A decent scanner would find which port it was in minutes, if not seconds
anyway.

I do not get what you mean 'exploited by trojans'? Web servers really only
get attacked by worms.

--
- Mark Randall
http://zetech.swehli.com

"Magoo" <magoo-nospam@hotmail.com> wrote in message
news:u0P6tGdSFHA.1392@TK2MSFTNGP10.phx.gbl...
>I have an intranet website that is currently assigned as Port=12345, TCP. I
> see that port was exploited by trojans in the past and I thought it would
> be
> good idea change this to a less known number. Do you think that makes
> sense
> ?
>
> Also, is there any preference (security wise) when assigining ports, or I
> should just pick whatever from 49152 thru 65535 and that 's it ?
> Assume this is an internal website.
>
>
> The Well Known Ports are those from 0 through 1023.
>
> The Registered Ports are those from 1024 through 49151
>
> The Dynamic and/or Private Ports are those from 49152 through 65535
>
>
>

Top