Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Why NOT Close Well-Known And Trojan Ports?

Why NOT Close Well-Known And Trojan Ports? 12 years 2 months ago #5038

  • FallenZer0
  • FallenZer0's Avatar
  • Offline
  • Senior Member
  • Posts: 259
  • Karma: 0
Hello,

Isn't it a good idea to close all the well-known ports and trojan ports for home users? I am not sure of the consequences of doing something like this, but I would be interested in what you guys think?

I've W2KP, and all the services were listed in
%systemroot%\system32\drivers\etc\services


Any Thoughts?
-There Is A Foolish Corner In The Brain Of The Wisest Man- Aristotle
The administrator has disabled public write access.

Ports 12 years 2 months ago #5041

  • TheBishop
  • TheBishop's Avatar
  • Offline
  • Moderator
  • Posts: 1719
  • Thank you received: 8
  • Karma: 5
Don't see why you can't do this if you're careful. Problem with Windows is that there are so many add-on "services" like Windows Update etc that home users would probably want to have working. If you blocked most of the not-strictly-essential ports then most of the not-strictly-essential bits of Windows would stop working.

If you're inteseted in which ports do what and which ones you can do without, Sahirh did an excellent post on this some time ago. I think it has aged out of the forum by now, but perhaps he still has the details.

On reflection, I think the easiest way to achieve what you're saying might be to put the machine behind a firewall, either hardware or software (e.g Zonealarm of the built-in Windows XP one). That would effectively block unwanted ports from the perspective of the outside world
The administrator has disabled public write access.

Re: Ports 12 years 2 months ago #5043

  • FallenZer0
  • FallenZer0's Avatar
  • Offline
  • Senior Member
  • Posts: 259
  • Karma: 0
On reflection, I think the easiest way to achieve what you're saying might be to put the machine behind a firewall, either hardware or software (e.g Zonealarm of the built-in Windows XP one). That would effectively block unwanted ports from the perspective of the outside world

--Yes. I've Sygate.
-There Is A Foolish Corner In The Brain Of The Wisest Man- Aristotle
The administrator has disabled public write access.

Re: Why NOT Close Well-Known And Trojan Ports? 12 years 2 months ago #5322

  • oldstudent
  • oldstudent's Avatar
  • Offline
  • New Member
  • Posts: 13
  • Karma: 0
Hi,
I think it's not necessary! If you've ever checked al ports of well known trojans, you might got a headache!
First time of installing a firewall, you should close all port. After that, you can open some ports which you need, such as 21, 23, 80.. and so on. Even if you close all known trojan port, trojan users can use another port to notify them when you're online.
Some of my ideas, :D
Cheer,
Never late to begin
The administrator has disabled public write access.

Re: Why NOT Close Well-Known And Trojan Ports? 12 years 2 months ago #5325

  • FallenZer0
  • FallenZer0's Avatar
  • Offline
  • Senior Member
  • Posts: 259
  • Karma: 0
Hi,
I think it's not necessary! If you've ever checked al ports of well known trojans, you might got a headache!
First time of installing a firewall, you should close all port. After that, you can open some ports which you need, such as 21, 23, 80.. and so on. Even if you close all known trojan port, trojan users can use another port to notify them when you're online.
Some of my ideas, :D
Cheer,

--I was just wondering why you even bothered to post in the first place. Did you read TheBishop's post. He did say about the firewall and you just repeated the same thing. If your posts does NOT add value to a discussion then do NOT post.
-There Is A Foolish Corner In The Brain Of The Wisest Man- Aristotle
The administrator has disabled public write access.

Re: Why NOT Close Well-Known And Trojan Ports? 12 years 2 months ago #5327

  • Cool_Spot
  • Cool_Spot's Avatar
  • Offline
  • Frequent Member
  • Posts: 61
  • Karma: 0
but fallen_zero [code:1] Moderator Message - Please try not to misspell this name in the future :)[/code:1]
If your posts does NOT add value to a discussion then do NOT post.

cant u see that by dissing other people posts, you have just killed your own thread

everyone is entitled to there opinion, to type whatever they want in whatever forum, with respect to the posting guidelines. i dont think oldstudent was intentionally repeating what thebishop was saying, just more adding to his ideas and sharing his own knowledge.
The administrator has disabled public write access.
Time to create page: 0.083 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup