Toolkit
Story: Windows admin 'feature' poses latest hazard
Posted by: Metalbunny (Thursday 21 August 2003, 2:20 PM)
In case you happen to use the messenger service for what it's supposed to be used for, disabling it naturally is a problem.
But unless the spammer is inside your own network, simply blocking ports 137, 138, and 139 from the outside world is all that needs to be done to prevent those messages from ever entering the network at all.
Some server systems actually do use the service for notifying of printer problems or "server down for service" messages. Especially Windows 2003 servers use it for the latter sample.
Full Talkback thread
Story: Windows admin 'feature' poses latest hazard
-
I agree - pop up messages like this are becoming a... Kenny Millar -
Many thanks for your simple solution and instructi... Keith Deines
-
In case you happen to use the messenger service fo... Metalbunny -
This is a bit of a stretch, as the NET SEND comman... Greg Kujawa
-
The bloated virus magnet with the initials MS stri... Billy Goats
-
While I'm concerned about the security issues, I f... Anonymous
