I'm collecting port numbers which are open as shipped on NT. Previously
I had commented only on NT Network services for login, and SMB fileservices.
If people could add into the list below I'd be greatful.
I also am looking for information on the SMB 'back door' as alluded to
by Bill Hancock @ Checkpoint-1, and Security problems related to the
'NT-Authority Anonymous' activity.
There is no /etc/inetd.conf or /etc/services equivalent in NT, network
services seem to be scattered throughout the four 'hive' files in
\winnt\system32\config (SAM, SECURITY, Software, System) reachable via
the control panel apps or regedit32.
List of open ports on NT ws or svr as shipped(inaccurate):
echo 7 ping
netstat 15
ftp-data 20 # File Transfer Protocol (Data)
ftp 21 # File Transfer Protocol (Control)
domain 53 nameserver # Domain Name Service
finger 79 # Finger
netbios_ns 137 # NetBIOS Name Service !-- Typically UDP
!-- Also used by 'nbtstat' - Node Status Request
netbios_dgm 138 # NetBIOS Datagram Service !-- Always UDP ;)
netbios_ssn 139 # NetBIOS Session Service !-- Typically TCP
sms_db 775
sms_update 777
Bill Stout
_______________________________________________________________________________
Senior Systems Admin NT/UNIX/I-net/Routers/Mainframes/Janitor ;)
Hitachi Data Systems 408-970-4822 --- Disclaimer: I speak only for myself
___________"Infowar, Cyber-war, yes, 'they' _are_ out to get you..."___________
New Firewall Predictions:
'Home/Personal Firewalls' coming for cable-modem spoiled PCs.
'Firewall Farms' as coming default corporate firewall configuration.
'Virtual Network Security' for home office links via internet as a
major firewall and architechtural challenge.
'Identity theft' as political push to _require_ Digital IDs.
Unrestricted digital and audio sniffing by law enforcement to be status quo.
|
|
