Security Basics mailing list archives

RE: Blocking NetBios

From: "Andrew Shore" <andrew.shore () holistecs com>
Date: Tue, 15 Jun 2004 15:18:55 +0100

Before trying any of these suggestions can I recommend checking that the
network applications will run before hand.

Many customers have no idea what NetBIOS is and have heard it's a bad
thing.

 
Andrew Shore
Senior Security Specialist
DDI. 01302 308 165
andrew.shore () holistecs com
 
 
 
Company Number 04943010
VAT Number 828 8635 82
 
 
Holistic Technologies Ltd
Unit 7 Shaw Wood Business Park
Shaw Wood Way
Doncaster
South Yorkshire
DN2 5TB
T. 0870 240 1442
F. 0870 240 1443
www.holistecs.com
 
 
 
 
 
 
 
 
 
 
 
 
 
 

-----Original Message-----
From: Brunner, Mark [mailto:MBrunner () tor fasken com] 
Sent: 11 June 2004 20:16
To: gillettdavid () fhda edu; security-basics () securityfocus com
Subject: RE: Blocking NetBios

This could be done by installing a Personal Firewall package on each
workstation.
New ones, Like Symantec's products, let you set "personalities"
(standard configurations) up in advance and push updates to policy to
the clients from a central console.


Cheers!

Mark Brunner
Security Manager
Fasken Martineau DuMoulin LLP
Barristers & Solicitors
Patent & Trade Mark Agents
Toronto, Ontario
http://www.fasken.com

This communication is solicitor/client privileged and contains
confidential information intended only for the person(s) to whom it is
addressed. Any unauthorized disclosure, copying, other distribution of
this communication or taking any action on its contents is strictly
prohibited. If you have received this message in error, please notify us
immediately and delete this message without reading, copying or
forwarding it to anyone.
-----Original Message-----
From: David Gillett [mailto:gillettdavid () fhda edu]
Sent: Thursday, June 10, 2004 5:34 PM
To: 'Kareem Mahgoub'; security-basics () securityfocus com
Subject: RE: Blocking NetBios


  Recent IOS-based Cisco switches include an ability to apply
access lists to filter traffic between switch ports within a
VLAN.  Your client may have to replace some hardware to get
this feature, but it's available if they want it badly enough.

David Gillett

-----Original Message-----
From: Kareem Mahgoub [mailto:kareem () thewayout net]
Sent: Thursday, June 10, 2004 1:21 AM
To: security-basics () securityfocus com
Subject: Blocking NetBios

Hi list,
I have a request from one of our clients to block NetBios in
thier Network
( No one should be able to see the shared resources of others)
I have googled around and all what I have found is blocking
it on the edge
communication equipment ( router, xDSL modemd..etc) Which
will be done.
The most important thing is to disable it internally ( inside the LAN)
Any suggestions???
Taking in consideration that there is  DHCP server for the
clients ( If it
can contribute in the Solution)
Best Regards,
Kareem Mahgoub


------------------------------------------------------------------------
---
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off 
any course! All of our class sizes are guaranteed to be 10 students or
less 
to facilitate one-on-one interaction with one of our expert instructors.

Attend a course taught by an expert instructor with years of
in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization.

Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
----


------------------------------------------------------------------------
---
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off 
any course! All of our class sizes are guaranteed to be 10 students or
less 
to facilitate one-on-one interaction with one of our expert instructors.

Attend a course taught by an expert instructor with years of
in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization.

Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
----





---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Re: Blocking NetBios, (continued)
- - Re: Blocking NetBios Kareem Mahgoub (Jun 14)
- RE: Blocking NetBios Kirk Brady (Jun 11)
- RE: Blocking NetBios Velasquez Venegas Jaime Omar (Jun 11)
- RE: Blocking NetBios Andrew Shore (Jun 11)
  - Re: Blocking NetBios cert (Jun 14)
    - Re: Blocking NetBios Ansgar -59cobalt- Wiechers (Jun 15)
- Re: Blocking NetBios faisyuet (Jun 11)
  - Re: Blocking NetBios cert (Jun 14)
- RE: Blocking NetBios Depp, Dennis M. (Jun 14)
- RE: Blocking NetBios Brunner, Mark (Jun 14)
- RE: Blocking NetBios Andrew Shore (Jun 15)
- RE: Blocking NetBios Dan Denton (Jun 16)
  - Re: Blocking NetBios Ansgar -59cobalt- Wiechers (Jun 16)
- Re: Blocking NetBios Doug Massey (Jun 20)
  - RE: Blocking NetBios Bob Walton (Jun 22)
- RE: Blocking NetBios Streeter, Joseph (WI) (Jun 28)