Solved

closing ports 135 (msrpc) & 139 (netbios-ssn)

Posted on 2004-10-02
6
4,995 Views
Last Modified: 2013-12-04
According to nmap, the following ports are open on my computer:

135/tcp  open     msrpc
139/tcp  open     netbios-ssn


My understanding is the msrpc is the server that formerly was vulnerable to the msblast worm, so I'd like to disable it. I probalby don't need it open, right? How can this be done?

Also, is there a reason not to disable the netbios-ssn process? If so, how can I stop the process from running?

Thanks.
0
Comment
Question by:bobwood2000
  • 3
  • 2
6 Comments
 
LVL 2

Expert Comment

by:dev8
ID: 12210155
You can prevent these ports from being exploited by simply running a firewall such as Zone Alarm (http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp).  They will block any TCP port 135/139 traffic.  
0
 

Author Comment

by:bobwood2000
ID: 12210681
I don't want to use a firewall.
0
 

Expert Comment

by:sosor
ID: 12213417
Try disabling the file & Printer sharing
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 

Author Comment

by:bobwood2000
ID: 12214979
I disabled file & printer sharing, but the ports remain open.
0
 
LVL 2

Accepted Solution

by:
dev8 earned 250 total points
ID: 12217378
0
 

Author Comment

by:bobwood2000
ID: 12218064
Thank you.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question