Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: Gert Andersen on June 28, 2001, 09:32:43 PM

Title: Security Risk?
Post by: Gert Andersen on June 28, 2001, 09:32:43 PM

Hi
I did a port scan on my system, and it claims a potential risk with the following ports:
135  udp  loc-srv,
137  udp  netbios-ns  
138  udp  netbios-dgm  
139  udp  netbios-ssn  

Are these ports used by Samba and are there any risks here. If there is a risk how can I disable the applications using these ports.

I'm using the e-smith server with two NIC's, one NIC connected to the Internet Router and the second one to the internal network

Thanks
Gert

Title: Re: Security Risk?
Post by: Ed on June 30, 2001, 01:47:19 AM

From where and how did you do the port scan.
If from the internet, its a problem
If from your workstation in your local network
That's how you get to samba

Title: Re: Security Risk?
Post by: Paul on July 01, 2001, 10:56:14 PM

Gert Andersen wrote:
>
> Hi
> I did a port scan on my system, and it claims a potential
> risk with the following ports:
> 135  udp  loc-srv,
> 137  udp  netbios-ns  
> 138  udp  netbios-dgm  
> 139  udp  netbios-ssn  
>
> Are these ports used by Samba and are there any risks here.

As Ed has said, if you performed this port scan from outside your local network, then there is a problem (and risks).  Yes, these ports are used by Samba and are neccessary if you want to provide file-sharing (i-bay access) via windows network neighborhood.

Paul

Title: Re: Security Risk?
Post by: Gert Andersen on July 17, 2001, 11:41:18 AM

Hi

Thanks for your replies.

I did the portscan from a workstation on my local network (behind the e-smith sever/gateway). The portscan was performed by the free service from:

http://www.sdesign.com/securitytest/index.html

Shoul I care about these warnings?

Thanks

Gert