Security Basics mailing list archives

Re: Necessary ports and not necessary ports

From: JGrimshaw () ASAP com
Date: Thu, 5 Feb 2004 14:42:38 -0600

I suggest starting with reading the information here:

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/prodtech/win2003/w2003hg/sgch04.asp

It has a list of all of the ports you would require opened, as well as
important to know information for hardening a domain controller.

Benawi () gmx de
02/04/2004 06:03 PM

To
security-basics () securityfocus com
cc

Subject
Necessary ports and not necessary ports

Hi there,

Need input from you all.
I have a win2003 box, which i want to set it as a domain controller.
I would like to filter the incoming IP via IPSec and secure the system
by closing ports. The box is used for user to log in, active directory
and sharing resources.
But somehow I don't know which ports are necsssary to be opened, when
the box works as domain controller.
Can you tell me which ports necessary to be opened, so that I can
closed all other ports. Or is it save already, when i close all ports
except
for ip from the domain?

Suppose I have other box, that works as webserver. All i have to do is
to close all ports except 80. Do I see it correctly?

thank you

--
GMX ProMail (250 MB Mailbox, 50 FreeSMS, Virenschutz, 2,99 EUR/Monat...)
jetzt 3 Monate GRATIS + 3x DER SPIEGEL +++ http://www.gmx.net/derspiegel
+++

---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any

course! All of our class sizes are guaranteed to be 10 students or less.
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion
Prevention,
and many other technical hands on courses.
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off
any course!
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any
course! All of our class sizes are guaranteed to be 10 students or less.
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention,
and many other technical hands on courses.
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off
any course!
----------------------------------------------------------------------------

Current thread:

RE: Hidden Ports, (continued)
- RE: Hidden Ports Dimitri Bertolami (Feb 04)
- RE: Hidden Ports nate (Feb 04)
  - Re: Hidden Ports Jamie Pratt (Feb 06)
- Re: Hidden Ports David J. Bianco (Feb 04)
  - Re: Hidden Ports Michael Painter (Feb 05)
    - Re: Hidden Ports David J. Bianco (Feb 05)
    - Re: Hidden Ports Michael Painter (Feb 06)
  - Re: Hidden Ports vrsnet (Feb 06)
- Necessary ports and not necessary ports Benawi (Feb 05)
  - Securing Windows Server 2003 [was: Necessary ports and not necessary ports] Joey Peloquin (Feb 05)
  - Re: Necessary ports and not necessary ports JGrimshaw (Feb 06)
  - Re: Necessary ports and not necessary ports NSC (Feb 06)
- Re: [work] Hidden Ports opticfiber (Feb 05)
- Re: Hidden Ports Vincent (Feb 06)
- Re: Hidden Ports Alessandro (Feb 04)
- Re: Hidden Ports H Carvey (Feb 05)
- Re: Hidden Ports H Carvey (Feb 06)
  - RE: Hidden Ports Dimitri Bertolami (Feb 06)
    - Re: Hidden Ports Michael Painter (Feb 09)
    - RE: Hidden Ports Aditya [ Aditya Lalit Deshmukh ] (Feb 10)
- Re: Hidden Ports H Carvey (Feb 06)

(Thread continues...)