RE: Is TCP 135 clamped down?

  • From: "David V. Dellanno" <ddellanno@xxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Tue, 19 Aug 2003 16:22:57 -0400

Here's another link that Tom pass to us.
 
http://www.trojanscan.com/
 
oh..did I mention about Tom's Book!
 
Thomas W Shinder
www.isaserver.org/shinder <http://www.isaserver.org/shinder>  
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
<http://tinyurl.com/1llp> 

 

        -----Original Message-----
        From: Simon Weaver [mailto:Simon.Weaver@xxxxxxxx] 
        Sent: Tuesday, August 19, 2003 5:18 PM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] RE: Is TCP 135 clamped down?
        
        
        http://www.ISAserver.org
        
        
        Dave
        I ran the scan and it came back with STEALTH - as if there was
no real way to say TCP135 was Open :o)
        So how did it get in?
         
        Simon Weaver
        Technical Consultant
        MCSE+Internet / MCSE Windows 2000
        Integrated Solutions Corp. Ltd
        http://www.iscl.net <http://www.iscl.net/>  

                -----Original Message-----
                From: David V. Dellanno [mailto:ddellanno@xxxxxxxxxx]
                Sent: 19 August 2003 19:51
                To: [ISAserver.org Discussion List]
                Subject: [isalist] RE: Is TCP 135 clamped down?
                
                
                http://www.ISAserver.org
                
                
                https://grc.com/x/ne.dll?bh0bkyd2 <http://grc.com> 
                 
                ShieldsUP section at the bottom page, Common Ports, All
Service Ports

                        -----Original Message-----
                        From: Simon Weaver
[mailto:Simon.Weaver@xxxxxxxx] 
                        Sent: Tuesday, August 19, 2003 4:48 PM
                        To: [ISAserver.org Discussion List]
                        Subject: [isalist] Is TCP 135 clamped down?
                        
                        
                        http://www.ISAserver.org
                        
                        
                        Guys
                        Just a very quick question! I met a new client
that was infected by teh 2 latest worms going around the streets!
                         
                        They are running SBS2k with ISA setup, however
the worm still got into the System.
                         
                        Is there a way to prove TCP135 was being
protected? I have now patched the Server, and ALL workstations, as they
were all infected!
                         
                        Finally, if the client PC's have the ISA
Firewall Client turned OFF, are they still able to access teh Internet,
WITHOUT Firewall Protection?
                         
                        Thanks for your help
                         
                        Simon Weaver
                        Technical Consultant
                        MCSE+Internet / MCSE Windows 2000
                        Integrated Solutions Corp. Ltd
                        http://www.iscl.net <http://www.iscl.net/>  
                         
        
------------------------------------------------------
                        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
                        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
                        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        
------------------------------------------------------
                        Other Internet Software Marketing Sites:
                        Leading Network Software Directory:
http://www.serverfiles.com
                        No.1 Exchange Server Resource Site:
http://www.msexchange.org
                        Windows Security Resource Site:
http://www.windowsecurity.com/
                        Network Security Library: http://www.secinf.net/
                        Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
        
------------------------------------------------------
                        You are currently subscribed to this
ISAserver.org Discussion List as: ddellanno@xxxxxxxxxx
                        To unsubscribe send a blank email to
$subst('Email.Unsub') 

                        

                        Confidentiality Notice:
                        This e-mail message, including any attachments,
is for the sole use of the intended recipient(s) and may contain
confidential and privileged information. Any unauthorized review, use,
disclosure or distribution is prohibited. If you are not the intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the original message. 

                

                Confidentiality Notice:
                This e-mail message, including any attachments, is for
the sole use of the intended recipient(s) and may contain confidential
and privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient,
please contact the sender by reply e-mail and destroy all copies of the
original message. ------------------------------------------------------
                List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
                ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
                ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
                ------------------------------------------------------
                Other Internet Software Marketing Sites:
                Leading Network Software Directory:
http://www.serverfiles.com
                No.1 Exchange Server Resource Site:
http://www.msexchange.org
                Windows Security Resource Site:
http://www.windowsecurity.com/
                Network Security Library: http://www.secinf.net/
                Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
                ------------------------------------------------------
                You are currently subscribed to this ISAserver.org
Discussion List as: Simon.Weaver@xxxxxxxx
                To unsubscribe send a blank email to
$subst('Email.Unsub') 

        ------------------------------------------------------
        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        ------------------------------------------------------
        Other Internet Software Marketing Sites:
        Leading Network Software Directory: http://www.serverfiles.com
        No.1 Exchange Server Resource Site: http://www.msexchange.org
        Windows Security Resource Site: http://www.windowsecurity.com/
        Network Security Library: http://www.secinf.net/
        Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
        ------------------------------------------------------
        You are currently subscribed to this ISAserver.org Discussion
List as: ddellanno@xxxxxxxxxx
        To unsubscribe send a blank email to
$subst('Email.Unsub') 

        

        Confidentiality Notice:
        This e-mail message, including any attachments, is for the sole
use of the intended recipient(s) and may contain confidential and
privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient,
please contact the sender by reply e-mail and destroy all copies of the
original message. 



Confidentiality Notice:
This e-mail message, including any attachments, is for the sole use of the 
intended recipient(s) and may contain confidential and privileged information. 
Any unauthorized review, use, disclosure or distribution is prohibited. If you 
are not the intended recipient, please contact the sender by reply e-mail and 
destroy all copies of the original message.

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 08-2003