I would like to share a recent experience. W2k Web server IIS5 MySQL. netbios (port 135) was enabled by default via WINS. Loads of 680 events auditing logons. Account lockout policies triggered all username lockout including IUSR (anonymous web access).
Disable netbios over TCP/IP in W2k Server ethernet to prevent DoS.
Disable netbios over TCP/IP in W2k Server ethernet to prevent DoS.