Link to home
Start Free TrialLog in
Avatar of jimmymcp02
jimmymcp02Flag for United States of America

asked on

How to remove tcp services

Greetings!

I need to remove the following services from windows due to some security compliance

tcp 139
tcp 445
tcp 135

I used a tool a couple of days ago but the it does not remove the services it just disables them.

Any assistance will be greatly appreciated
ASKER CERTIFIED SOLUTION
Avatar of DotNetThinker
DotNetThinker
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of Bartender_1
Bartender_1
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of jimmymcp02

ASKER


toniur
Disable File and Printer Sharing or use Security Configuration Wizard to lock down server? Exactly which OS are we talking about?
win2k server

SG
A decent firewall [even freeware like Zone Alarm from Zone Labs] will block ports as you instruct.
This may be the simplest way for you to manipulate port access.

Im still researching

true but i cant bring a software firewall in at the moment this is one of my restaturants pc and if i bring a anything like zone alarm this might cause all my workstations to stop communicating...

behenderson
you posted in the wrong TA ;-)
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
I think that the problem is that you are looking for a solution to limiting the TCPIP software and it is just not there to my knowledge.  And so everyone is telling you that the solution is to implement a firewall.  And you don't like that idea because that is a whole new skill and seems like a lot of work.

That is the current workaround.  I know that you would prefer that this was not the case but sadly it is.  So you cannot just CHOP OFF part of the software at this time.  You have TCP or not.

As has been pointed out by several other people the firewall can either be on the machine itself or outside of it. So there are multiple ways to Close the Zipper.  As has also been pointed out it can be as limiting or as open as you choose to configure.  You can easily implement a port level firewall with only 3 rules which block ports 149, 445, 135.  You can get a Router with a Firewall in the router and use the router to do the blocking and make no changes whatsoever to the software on your machine.  You SHOULD have a firewall for your computers in todays internet environment.  You MIGHT already have software on your router that can do this.. worth checking into.  Depends on what brand and how old.

I know that right now you don't LIKE this solution, but you should like the solution or like the problem.  Because you can have one or the other.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
>>I think that the problem is that you are looking for a solution to limiting the TCPIP software and it is just not there to my knowledge.  And so everyone is telling you that the solution is to implement a firewall.  And you don't like that idea because that is a whole new skill and seems like a lot of work.

I left a little detail out...i have a firewall already in place is a netscreen firewall. im still researching sorry for the delay
Thank you everyone i was able to modify some rules on our netscreen gt5 firewall and ran a scan all the output showed no ports open im screasing the points and splitting it according to the suggestion. appreciate your assistance
thanks jim.
Glad to hear that you solved your problem :)
Glad to be of service.