View Full Version : closing a port
ryan2049
01-15-2001, 12:52 AM
I am running Windows Me. I went to the www.symantec.com and did their security check thing and it said that I have an open port 5000 which is supposed to be a port for a trojan. I have Norton Internet Security 2001 and I guess its not closing that one. Is there another way to close port 5000?
RWSchlatter
01-15-2001, 04:37 AM
An open port in NIS will mean you do not have a rule configured.
In NIS, open NIS Options, click the Advanced Options button, then select the Other tab.
Mark the check boxes in the Miscelleneous group, in your case especially the Stealth Blocked Ports option. Use the '?' / "What's this?" help for short explanation of the options or read Help.
______________
Regards - Richard
ryan2049
01-16-2001, 04:52 PM
I went to the advanced options and the block IGMP Protocol was not checked so I checked that and restarted and I went back to the test and it said it was still open. Any other ideas?
RWSchlatter
01-17-2001, 04:11 AM
As no NIS version was mention, the blocking checkbox J gave you may not be included in your version any more.
If you go NIS Options > Advanced ant then choose the Firewall tab you should see a list of all rules defined on your machine, the ones that come with the product and are updated when you register and regularily visit the update site, but also the ones you define your self.
You should find a rule "Default Block Sokets de Trois v1. Trojan" that blocks ports 5000 and 5001.
______________
Regards - Richard
ryan2049
01-19-2001, 08:48 PM
I think I'll reinstall it because it still says it is open. I checked where you said and it was checked to block. I think the scanner might be wrong or something.
RWSchlatter
01-20-2001, 06:59 PM
If the scanner tells you it sees a problem - believe it (even if the problem is not solved).
But don't get scared, you have one known hole, but many others are closed by NIS. And in general speaking, a trojan needs a client on the targeted machine, so if you take care that all your downloads and emails and floppies are scanned with an anti-virus tool, you have a good chance to survive.
Q: did you complete your installation with online registration, cause final download and most current content follow at that time.
______________
Regards - Richard
ryan2049
01-20-2001, 08:40 PM
Yes I did register at that time.
ryan2049
01-21-2001, 12:05 AM
The first time I installed the program it used to block a lot of accesses. Then I had to reinstall it and now since I reinstalled it it doesn't block any accesses. Is that because the ports are in stealth.
RWSchlatter
01-21-2001, 04:20 AM
sorry J have to give up on this - but you still may try Symantec hotline
______________
Regards - Richard
ryan2049
01-21-2001, 07:13 PM
OK thanx anyways
Powered by vBulletin™ Version 4.1.0 Copyright © 2012 vBulletin Solutions, Inc. All rights reserved.