Re: Blocking NetBios

["cert" <kitty () cert org cn>]

How can I know if NetBios of my system  is available or not ? Whether typing  command "netstat -an"  to see if the port 
139 is open or not? 
Then what are the port 135, 137,138, 445 used for?  After disable the TCP/IP--> Win--> over TCP/ip NetBios ,  only 139  
is disabled. 
who can explain it?

Best Regards,
Kitty Li
Venus Ltd. 

----- Original Message ----- 
From: "Andrew Shore" <andrew.shore () holistecs com>
To: "Kareem Mahgoub" <kareem () thewayout net>; <security-basics () securityfocus com>
Sent: Friday, June 11, 2004 3:29 PM
Subject: RE: Blocking NetBios


> > From Windows 2000 onward it is possible to turn off Netbios on the
> clients. However, many network applications will stop working ~(even
> some of Microsofts!)
>
>  
> Andrew Shore
> Senior Security Specialist
> DDI. 01302 308 165
> andrew.shore () holistecs com
>  
>  
>  
> Company Number 04943010
> VAT Number 828 8635 82
>  
>  
> Holistic Technologies Ltd
> Unit 7 Shaw Wood Business Park
> Shaw Wood Way
> Doncaster
> South Yorkshire
> DN2 5TB
> T. 0870 240 1442
> F. 0870 240 1443
> www.holistecs.com
>  
>  
>  
>  
>  
>  
>  
>  
>  
>  
>  
>  
>  
>  
>
> -----Original Message-----
> From: Kareem Mahgoub [mailto:kareem () thewayout net] 
> Sent: 10 June 2004 09:21
> To: security-basics () securityfocus com
> Subject: Blocking NetBios
>
> Hi list,
> I have a request from one of our clients to block NetBios in thier
> Network
> ( No one should be able to see the shared resources of others)
> I have googled around and all what I have found is blocking it on the
> edge
> communication equipment ( router, xDSL modemd..etc) Which will be done.
> The most important thing is to disable it internally ( inside the LAN)
> Any suggestions???
> Taking in consideration that there is  DHCP server for the clients ( If
> it
> can contribute in the Solution)
> Best Regards,
> Kareem Mahgoub
>
>
> ------------------------------------------------------------------------
> ---
> Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
> off 
> any course! All of our class sizes are guaranteed to be 10 students or
> less 
> to facilitate one-on-one interaction with one of our expert instructors.
>
> Attend a course taught by an expert instructor with years of
> in-the-field 
> pen testing experience in our state of the art hacking lab. Master the
> skills 
> of an Ethical Hacker to better assess the security of your organization.
>
> Visit us at: 
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> ------------------------------------------------------------------------
> ----
>
>
>
>
>
> ---------------------------------------------------------------------------
> Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
> any course! All of our class sizes are guaranteed to be 10 students or less 
> to facilitate one-on-one interaction with one of our expert instructors. 
> Attend a course taught by an expert instructor with years of in-the-field 
> pen testing experience in our state of the art hacking lab. Master the skills 
> of an Ethical Hacker to better assess the security of your organization. 
> Visit us at: 
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> ----------------------------------------------------------------------------