Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Why firewalls aren't always enough 3
- Thread starter smah
- Start date
- Status
Smah,
I saw a question that you answered several months ago about an infected IRC Trojan that NAV detected on her computer but couldn't repair. I never saw her reply back to you. I have the same problem. I can't delete the file since it is imbedded. Any suggestions? I see you have a lot of expertise. Thanks Smah..
Doug
I saw a question that you answered several months ago about an infected IRC Trojan that NAV detected on her computer but couldn't repair. I never saw her reply back to you. I have the same problem. I can't delete the file since it is imbedded. Any suggestions? I see you have a lot of expertise. Thanks Smah..
Doug
-
1
- Thread starter
- #3
-
2
- #4
Having a firewall (FW) does not guarantee that all your doors (access portals) are locked.
If you want to test for open portals go to and download their free 'Advanced Port Scanner'.
Typically a (software) firewalled computer often still has the following ports open for business:
25 (smtp) & 110 (pop3) - can't do email without such ports.
80 ( http) - can't use your browser without it.
139 (netbios-ssn) - a consequence of file and print sharing.
If you add a router in front of such a computer (NAT hardware FW), the existence of a vulnerable port 139 is no longer visible to the outside world.
The question of how some problem got onto your computer may fundamentally get down to where you go on the Internet and your email habits. A firewall can't protect you from poorly considered choices/decisions and bad habits.
If you want to test for open portals go to and download their free 'Advanced Port Scanner'.
Typically a (software) firewalled computer often still has the following ports open for business:
25 (smtp) & 110 (pop3) - can't do email without such ports.
80 ( http) - can't use your browser without it.
139 (netbios-ssn) - a consequence of file and print sharing.
If you add a router in front of such a computer (NAT hardware FW), the existence of a vulnerable port 139 is no longer visible to the outside world.
The question of how some problem got onto your computer may fundamentally get down to where you go on the Internet and your email habits. A firewall can't protect you from poorly considered choices/decisions and bad habits.
There is a saying in life ' Trust nobody, you'll only be disappointed'. Well it applies even more so to the internet!!!!!
Torenia Technical Services
"Spreading The News Around The World
Torenia Technical Services
"Spreading The News Around The World
Smah,
Excellent find!
vop,
I think you pretty much nail it on the head. Really makes me wonder how many people do respond to those emails they receive from "their bank" that says they need to email their password or something. The only solution is education. In a business, with a reliable admin, these are no big problem, however, home is a different story. I know I've told people the "Trust nobody" piece, even at home, yet I am constantly getting asked questions of "I responded to an email, and now I have a huge purchase on my bank account" kind of things happening. It's all about education. I feel kind of sorry for some of those people that don't have a reliable person to ask.
Excellent find!
vop,
I think you pretty much nail it on the head. Really makes me wonder how many people do respond to those emails they receive from "their bank" that says they need to email their password or something. The only solution is education. In a business, with a reliable admin, these are no big problem, however, home is a different story. I know I've told people the "Trust nobody" piece, even at home, yet I am constantly getting asked questions of "I responded to an email, and now I have a huge purchase on my bank account" kind of things happening. It's all about education. I feel kind of sorry for some of those people that don't have a reliable person to ask.
- Status
Similar threads
