Great Circle Associates Firewalls
(May 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: FW: Text v. GUI for Security Software
From: Russ <Russ @ RC . Toronto . on . ca>
Date: Mon, 20 May 1996 20:35:34 -0400
To: "scott @ di2 . disclosure . com" <scott @ di2 . disclosure . com>
Cc: "'Firewalls'" <firewalls @ GreatCircle . COM> 
"It is fairly easy to enable the remote management of NT client machines by 
administrative users in the NT domain.  I don't know about Windows 95 
machines, but it may be possible.  Anyone know?  This is just one reason I 
BLOCK the NetBIOS (ie. SMB protocols) ports from outside our network."

Yes, Windows '95 can be remotely administered.

As for the SMB protocols, remote administration actually is done over RPC, 
so you really need to block TCP 135 (RPC Locator Service) more than the 
137-139 range.

Cheers,
Russ
Follow-Ups:
Indexed By Date Previous: Re: X.400 through Firewalls
From: Colin Campbell <sgcccdc @ citec . qld . gov . au>
Next: Re: FW: Text v. GUI for Security Software
From: eckes <ecki @ lina . inka . de>
Indexed By Thread Previous: Re: Text v. GUI for Security Software
From: Paul Ferguson <pferguso @ cisco . com>
Next: Re: FW: Text v. GUI for Security Software
From: eckes <ecki @ lina . inka . de>
Google
 
Search Internet Search www.greatcircle.com