Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » The Site » Old Forums » Kerio - Tiny Support » BZ Kerio 2x Default Replacement Update
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Forum Guidelines ·Kerio/Tiny pre-3.x FAQ ·BBR Security Forum ·Security FAQ
AuthorAll Replies


gwion
wild colonial boy
Premium,ExMod 2001-08
join:2000-12-28
Pittsburgh, PA

reply to BlitzenZeus
Re: BZ Kerio 2x Default Replacement Update

Sure. Because it's provided for in the rules. That just automates by wizard the blocking of 137, 138, 139, etc. and makes it easy to add LAN allows in the private trust range. It could be used with the rules, too, as redundency, but it would be -less-, rather than more comprehensive, since the custom rules block 135, too, which wasn't considered imnportant by anybody (except me) until about two months ago when somebody actually did what I've been warning about for years, and exploited that wide open WinRPC endpoint map port...

It's a call... either use the preconfigured or make a rule. But if you use preconfigured, remember, you want to block the DCOM-RPC nonsense, that has no more business on the internet than NetBios traffic...
--
Every knot was once straight rope...
to forum · permalink · 2003-09-28 16:50:07 · (locked)


BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL

 Thanks Gwion, and your not the only one who was blocking 135

That feature tries to do two things, but the fact is, your rules can do a much better job, while controlling access to your shares in windows leaves you more secure overall.

I never saw the need for the addition of the tab at all, and it can possibly even make you more vulnerable now.
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed.
to forum · permalink · 2003-09-28 18:51:43 · (locked)
Forums » The Site » Old Forums » Kerio - Tiny Support

Friday, 27-Nov 18:41:13 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [119] Time Warner Cable Fires Broadside At Broadcasters
· [111] New AT&T Ad Campaign Hits Back At Verizon
· [95] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [70] TiVo Sees Record Customer Losses
· [68] In-Flight Internet Headed For Bumpy Landing?
· [60] Thanksgiving Open Thread
· [58] Verizon CEO: Hulu Will Be Dead Soon
· [38] EFF Wages War On Fine Print
· [38] ICANN Slams DNS Redirection
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· [Vista] Why is HD So Full? [Microsoft Help]
· Leveling to 85 [World of Warcraft]
· [Newsgroups] Newzleech down? [Filesharing Software]
· Bell Response to PIPEDA Request [TekSavvy]
· Newegg Black Friday Sale started [Users Find Hot Deals]
· What is the spell hit cap for a lvl 80 full arcane spec mage [World of Warcraft]
· New exploit masquerades as Flash Player upgrade [Security]
· Whats the big deal about being "Old School"....? [World of Warcraft]