Yes! Block ports! There is no guarantee that the port is listening nor active nor that the program that uses the port is running when you are checking. Rather...
-Block the ports you know you don't need. If not sure, block it anyway and see if the trusted program crashes/malfunctions -LOG attempts to use those blocked ports. Hunt down and kill those untrusted apps that tried to open the ports. -LOG ALL repeat ALL used outgoing ports, because this isn't the early 1990's. The folks writing the Trojans and malware have learned how to use "well-known" ports to do their dirty work. Just because you use port 443 for https/secure socks doesn't mean some malware doesn't use it to ftp. Look at those logs, see when ports you considered safe are running, and if your pop port opens at 2AM when you know you didn't have your mail client open, hunt down and kill that app too. -You need to be doing the "trusted" port monitoring always. If it's open because you need it, they will find that out and come in through your open ports and your IDS logs and tripwire-like apps will be the only way you'll see it. D. Weiss MCSE/CCNA/SSP2 -----Original Message----- From: Ivan Hernandez [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 7:49 PM To: [EMAIL PROTECTED] Cc: ASBB11; [EMAIL PROTECTED] Subject: Re: port 12345 windows95/nt Don't block ports! close unknkow programs! Richard Cotterell wrote: >Ref: ASBB11 <[EMAIL PROTECTED]>'s > message dated 4 Feb 2002, 16:18 hours. > >>Sorry for the very basic question. >>Using superscan I found this port open on my computer. How can I close >>it? I use sygate personal firewall but it looks like I do not have >>options to shut down ports, I can only act on protocols. >>Thanks, >> >>Angelo >> >You seem to be in need of, say, Port Blocker from AnalogX. > >Take a look at: > ><http://www.analogx.com/> > >and decide if this is the tool you are looking for. > >An alternative is to use Tiny Personal Firewall (freeware if personal use) and block >specific protocol ports as required. > > >-- >Richard H. Cotterell <mailto:[EMAIL PROTECTED]> > >Advice is like snow; the softer it falls, the longer it dwells upon, >and the deeper it sinks into the mind. > -Samuel Taylor Coleridge, poet and philosopher (1772-1834) >
