Welcome to WebmasterWorld Guest from 54.147.44.93

Forum Moderators: bakedjake

Message Too Old, No Replies

my ISP detect some port using by virus

can u help me about blocking some port

     

badm4n

4:56 am on Jul 21, 2004 (gmt 0)

10+ Year Member



my isp contact me yesterday and askin' to me to BLOCK port 445 and 135 cause they said virus using that port

how to block this port using iptables? and how to make this blocking available on next reboot

sory i am new

info :
OS : SUSE 9

thx

nobody

8:41 am on Jul 21, 2004 (gmt 0)

10+ Year Member



There is a general How-to on using Linux Firewalling tools here :

[tldp.org...]

(as well as lots of other places on the net).

If you don't need a service running, or port open, then close it :)

encyclo

10:01 am on Jul 21, 2004 (gmt 0)

WebmasterWorld Senior Member encyclo is a WebmasterWorld Top Contributor of All Time 10+ Year Member



Welcome to WebmasterWorld, badm4n.

Port 135 is for the Microsoft Remote Procedure Call (RPC) service and port 445 is for SMB. Are you running an open Samba share? In both cases, because you are running Linux, your machine is not vulnerable to the worms which attack these ports, but your ISP may have detected that your machine is responding on the two ports in question. As already mentioned, you need to ask yourself whether you need these services running - if you need Samba for networking to local Windows machines on your network, then you should secure it.

My recommendation over IPTables is to get an external router with NAT translation and an integrated firewall. They are incredibly cheap these days, and they protect the whole network with one device.

m_shroom

3:29 pm on Jul 21, 2004 (gmt 0)

10+ Year Member



info :
OS : SUSE 9
Go to System => Yast2 => Security and Users => Firewall

Activate, select external interface, use default settings

badm4n

3:19 pm on Jul 23, 2004 (gmt 0)

10+ Year Member



thx for your help guys...

i think i dont use that samba things ^^

i refer to block it for future convience between me and my ISP lolz

thanks for your help....

btw ....

i am new at *nix thing ...

do you have a url that explain and teach a newbies from zero ... about linux ... hmmmm i refer to use slackware for my future OS....
i need a URL that "teach" me about slackware ( installation and then setup :p ) pls pls pls

thanks

MattyMoose

5:11 pm on Jul 23, 2004 (gmt 0)

10+ Year Member



I used to use slackware exclusively... This site helped me quite a lot. It comes as quite the shocker, I'm sure, but:

[slackware.com ]
[slackware.com ]

and for package management/updating use:

[swaret.org ]

I left the Linux world before swaret had come out, so I've never used it, but apparently it's a life-saver.

And, for an all-in-one Gnome setup:

[dropline.net ]

HTH,
MM

 

Featured Threads

Hot Threads This Week

Hot Threads This Month