how to close port 80?

after making a security test on line to check my pc ( https://grc.com/x/ne.dll?bh0bkyd2 ) i found that port 80 is open wich is bad for pc security when connected to the internet.
how to close port 80 without using any firewall or security softwares?...is there away to change any settings in my pc to close port 80?
saifnetAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
j2Connect With a Mentor Commented:
1. Port 80 does not need to be open to surf. It only has to allow OUTGOING connections on port 80.

2. To disable port 80, disable your webserver / anythign else running on port 80.

3. You ISP might have filtered the port. This makes it look like an open port, but it is infact your ISPs equipment that answers. The reasons for this might be that they use forcing porxies, or simply controls port 80 if they do not allow users to run webservers on their system. The same may be seen for many cable users when port 139 shows up as "open" or "filtered" this is because the ISP filters this to block browsing of other systems on the segment.

But to summarize: If you ARE running something that needs port 80 (Personal Web Server, IIS, Apache, anything) the only way you can disable it is to Shut down the software, install a firewall, tell the software to use another port.
0
 
bluezenCommented:
Basically saifnet, the problem is that you need one port at least open if you want to access the internet. Port 80 is your http port - the port through which your http data passes......So you can't block it unless you want to block your net access completely. Anyway it is'nt really a security risk - it represents the minimum level of risk required for a user to connect to the internet without using a firewall !
0
 
DassaCommented:
This security test has shown port 80 to be open and as bluezen has stated, you need this to be able to browse the WWW.  This is not a security risk unless you actually put a server on that port such as MS PWS or some other web server.  When you are browsing the WWW, your browser software is handling communications through port 80, make sure you have all the applicable security updates for your browser and you should be right.  When you use a client to access your ISP mail server, ports 25 and 110 may also be open.  Again, this is not a problem unless you are actually running a mail server.  Having open ports is not such a problem as what may be running on those ports.  For instance some trojans will attach themselves to particular ports and act as a server to whoever wants to connect to it.  These are a bigger danger and can be overcome by making sure you run a good virus scanning program and keep it uptodate.
0
The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

 
nettromCommented:
port 80 doesn't need to be open to surf the net, there's nothing saying that return connections go to port 80 on your local machine.

you'll have to run some kind of firewall software or be able to control the router to close access to it though.
0
 
saifnetAuthor Commented:
J2
My isp is using a filter to block
unwanted web sites but on the other hand i used a firewall called ZoneAlarm 2.0 then i used BlackIce defender then norton security 2000 and in each one of thease softwares my port 80 still open.
is there a way to make sure port 80 is open cuz of my isp is using a filter? and if it is becuz of the isp filter does my port 80 is really open and i have a security hole on my system??
0
 
j2Commented:
You could use netstat to see if you actually are listening to the ports

netstat -a

and if port 80 is listening, you have something running on port 80.

Also note that some of these (crappy) security / 'firewalls' programs also might be listening to port 80 thereby triggering the alert.

There is NO WAY to protect a machine well by running a firewall on it. A firewall only really protects systems _behind_ it.
0
 
saifnetAuthor Commented:
J2
i made a netstat -a and port 80 was not listening but i found that port 1025 is listening.....any idea?
0
 
j2Commented:
1025 is "Nonstandard", only ports below 1023 have 'well known uses'. No good way of telling what is running there. Could be anything, ICQ, proxy, AIM,  whatever :)
0
 
saifnetAuthor Commented:
Adjusted points to 250
0
 
saifnetAuthor Commented:
i found that port 1025 is listening even when i am not connected to the internet wich means it has nothing to do with icq or proxy or other internet stuff...does that give any hint?
0
 
j2Commented:
Nope. No hint whatsoever. Kill programs / services one by one and then wait 20 minutes before repeating the netstat, and continue this until you have found what is listening.
0
 
saifnetAuthor Commented:
J2
thanx alot u were a great help
0
 
accusersCommented:
the users browse internet bay port 80 ineed close only brows throu 8080
0
All Courses

From novice to tech pro — start learning today.