Safety when sharing drives permanently ?!

Posted on 2001-07-21
Last Modified: 2010-04-13

I was told by a friend that if I share my drives in my local peer to peer network in win2k, without password the drives wil be wide open on the internet to people that have nothing better to do than get on other peoples drives.
Is this true and if yes is:
1. Zonealarm enough to prevent accesses from outside
2. what sharing profile must i use to only make my PC by my laptop with a specified IP adress ?

Thanks for all comments in advance !

Question by:peter_b
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 32

Accepted Solution

jhance earned 50 total points
ID: 6304566
The information is correct.  If you have your system on a publicly accessible network and take no precautions, your drive is vulnerable.  There are several alternatives:

1) Use a FIREWALL.  You can get a firewall box for very little money these days and it is a good investment.  You put all your private systems behind it and no unauthorized outside connections are permitted.

2) Password protect the shares.  Depending on how secure you need to be this could be sufficient.  Be 100% sure that you have installed all the Microsoft recommended security patches on your W2K system.  There are a number of exploits that are out there for unpatched systems and BE SURE to keep your updates current.

3) Install the NETBEUI protocol on all your local systems and unbind the Client for MS Network from the TCPIP protocol on all your systems.  The NETBEUI is unroutable.  That means that it cannot, by definition, work beyond the first router on your network.  So it's secure against all remote threats by definition.

Author Comment

ID: 6304738
thanks, could you precise how to do these modifications in win2k ?
Is Zonealarm enough as a firewall ?
LVL 12

Expert Comment

ID: 6304835
-Zone alarm will do it if you block ports 135-139 from any unknown IP addresses. Addresses not in your LAN subnet.
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users


Author Comment

ID: 6304865
ehh how ?
LVL 12

Expert Comment

ID: 6304885
-The internet zone settings on Low allow access to file & print from the internet (dont want that)... Medium settings do block netbios & so do high.
-Read this info.

Author Comment

ID: 6305135
ok last thing: how do i simply set up a password for the shared drives ? The all users guest etc are confusing to me.

Expert Comment

ID: 6330347
i think you can resolve it by using on your LAN a "private ip" such as 192.168.0.X,,you cannot access such Ips from the Internet..and a firewall wont be needed..not even passwords..just make an account for every person who needs to use the resources you are sharing..
hope it helps.

Expert Comment

ID: 6842588
Question(s) below appears to have been abandoned. Your options are:
1. Accept a Comment As Answer (use the button next to the Expert's name).
2. Close the question if the information was not useful to you. You must tell the participants why you wish to do this, and allow for Expert response.
3. Ask Community Support to help split points between participating experts, or just comment here with details and we'll respond with the process.
4. Delete the question. Again, please comment to advise the other participants why you wish to do this.

For special handling needs, please post a zero point question in the link below and include the question QID/link(s) that it regards.
Please click the Help Desk link on the left for Member Guidelines, Member Agreement and the Question/Answer process.  Click you Member Profile to view your question history and keep them all current with updates as the collaboration effort continues, in the event new items have been created since this listing was pulled.

To view your open questions, please click the following link(s) and keep them all current with updates.

To view your locked questions, please click the following link(s) and evaluate the proposed answer.

------------>  EXPERTS:  Please leave any comments regarding this question here on closing recommendations if this item remains inactive another three days.
Thank you everyone.
Moderator @ Experts Exchange

P.S.  For any year 2000 questions, special attention is needed to ensure the first correct response is awarded, since they are not in the comment date order, but rather in Member ID order.

Expert Comment

ID: 6892540
Force-accepted by
CS Moderator

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Let's recap what we learned from yesterday's Skyport Systems webinar.
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : All lightning effects with instructions : http://www.mediaf…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question