How to Close Ports Manually???

M

mk

I have asked for a few security tests. All reported open ports. E.g. the ping ICMP, and other ITP or UDP ports.

ICP and ZoneAlarm were running under these tests and are running continuously.

How can i close certain ports manually in XP pro.?????

In Windows Knowledge Base there is no title for closing ports manually just for opening ones!

Does Windows being designed to be vulnerable?
MK
 
N

Nicholas

Microsoft Baseline Security Analyzer
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/tools/Tools/MBSAhome.asp

--
Nicholas

------------------------------------------------------------------------------------------------------------


I have asked for a few security tests. All reported open ports. E.g. the ping ICMP, and other ITP or UDP ports.

ICP and ZoneAlarm were running under these tests and are running continuously.

How can i close certain ports manually in XP pro.?????

In Windows Knowledge Base there is no title for closing ports manually just for opening ones!

Does Windows being designed to be vulnerable?
MK
 
J

Jupiter Jones [MVP]

Windows is not the proplem, your firewall is the problem.
Get the manual or go to the firewall help files.
If your firewall is not protecting your computer, why do you blame
Windows for the ineffective firewall?

--
Jupiter Jones [MVP]
An easier way to read newsgroup messages:
http://www.microsoft.com/windowsxp/pro/using/newsgroups/setup.asp
http://dts-l.org/index.html


I have asked for a few security tests. All reported open ports. E.g.
the ping ICMP, and other ITP or UDP ports.

ICP and ZoneAlarm were running under these tests and are running
continuously.

How can i close certain ports manually in XP pro.?????

In Windows Knowledge Base there is no title for closing ports manually
just for opening ones!

Does Windows being designed to be vulnerable?
MK
 
M

mk

Good riddance Jupiter.
ICF is made by Microsoft and built in XP . Well, it is true, I misspelled
its name. So, how can one close ports when the firewall is leaking?

By and large ICF leaves the ICMP ping port open by Symantec security test.
Using this test I made several iterations of security improvements, but that
port I shall close manually, because ICF leaves it open (ZA is not involved
in this).

Secuna's Nessus based security test found even more warning of security
risks. Most of them was ITP and UDP ports related of rarely or not used
services. Their advice: disable this services in .../etc/inetd.conf.
Unfortunately there is no such a configuration file in my XP. What I found
was ../etc/services with a list of services and their corresponding ports
among them those incriminate ports that Nessus found insecure.

What to do with this information? Still, I do not know how to close those
ports.

Is there an MVP on this site who closed once a port ?
MK
 
S

Star Fleet Admiral Q

As "Jupiter" said - a "Firewall" controls whether a port is open, closed or
stealth - not WinXP. Using a 3rd Party Firewall, such as ZoneAlarm or Tiny
Firewall allows you to configure rules allowing certain ports to be open,
closed or stealth, ZoneAlarm Pro, even allows you to configure which
networks can access the Port, I for one have Port 80 open for my home,
internal network so I can develop IIS ASP pages, where if it is accessed via
my Internet Connection, it is denied.
 
A

Alun Jones [MS MVP]

"Star Fleet Admiral Q" said:
As "Jupiter" said - a "Firewall" controls whether a port is open, closed or
stealth - not WinXP.
Click to expand...

Okay, strictly speaking, a firewall controls whether a packet destined for
such a port is allowed in to your computer or not. The port may be open
(for local use, or through an interface not protected by the firewall) or
closed, the firewall doesn't care - all it decides is whether to forward or
discard packets that go through it.
Using a 3rd Party Firewall, such as ZoneAlarm or Tiny
Firewall allows you to configure rules allowing certain ports to be open,
closed or stealth, ZoneAlarm Pro, even allows you to configure which
networks can access the Port, I for one have Port 80 open for my home,
internal network so I can develop IIS ASP pages, where if it is accessed via
my Internet Connection, it is denied.
Click to expand...

The short answer is that, to close a port, you must configure or close the
application that opened the port. Perhaps it would help if the OP would
give a list of the ports that are open, and we could suggest which programs
to close, and whether his scanner is being overly paranoid. After all, you
don't want to be blindly obeying the instructions of a 'security tool'
without knowing why.

Alun.
~~~~

[Please don't email posters, if a Usenet response is appropriate.]
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

How to block website or close website when user browss via IE 4
Tracing a Hacker …… 2
Kerio 2.1.5 vulnerability 27
IE and only IE wont connect 24
How to close Ctrl+Alt+Delete window? 7
Trojan Horse Peacomm ... morphing into a bugger 4
Macro$haft: Upgrade from Windows XP or risk infinite "zero-days" 13
How to refresh (programmatically) an ADP project's knowledge about views and stored procedures? 16

Top