Topic: Security Risk?

[Gert Andersen]

Hi
I did a port scan on my system, and it claims a potential risk with the following ports:
135  udp  loc-srv,
137  udp  netbios-ns  
138  udp  netbios-dgm  
139  udp  netbios-ssn  

Are these ports used by Samba and are there any risks here. If there is a risk how can I disable the applications using these ports.

I'm using the e-smith server with two NIC's, one NIC connected to the Internet Router and the second one to the internal network

Thanks
Gert

[Ed]

From where and how did you do the port scan.
If from the internet, its a problem
If from your workstation in your local network
That's how you get to samba

[Paul]

Gert Andersen wrote:
>
> Hi
> I did a port scan on my system, and it claims a potential
> risk with the following ports:
> 135  udp  loc-srv,
> 137  udp  netbios-ns  
> 138  udp  netbios-dgm  
> 139  udp  netbios-ssn  
>
> Are these ports used by Samba and are there any risks here.

As Ed has said, if you performed this port scan from outside your local network, then there is a problem (and risks).  Yes, these ports are used by Samba and are neccessary if you want to provide file-sharing (i-bay access) via windows network neighborhood.

Paul

[Gert Andersen]

Hi

Thanks for your replies.

I did the portscan from a workstation on my local network (behind the e-smith sever/gateway). The portscan was performed by the free service from:

http://www.sdesign.com/securitytest/index.html

Shoul I care about these warnings?

Thanks

Gert