Windows Services Attacks - Best Security Tips offers daily news, information, advices and tips about spyware, adware, viruses, trojans, web vulnerabilities, hackers, other threats    | Register now | Login
   
TIPS NEWS TOOLS DOWNLOADS MALWARE FORUM BOOKS FREE MAGAZINES FREE WEBCASTS & VIDEOS
GFI LANguard Network Security Scanner - Dld 30-day trial! del.icio.us  digg  Furl  NewsVine  Spurl  Blinklist  Ma.gnolia  Reddit  Tailrank  YahooMyWeb 
Best Tips
PHP Security Guide
Top 5 Anti-Malware Prote...
How To Tell Security Hoa...
Back to School Security ...
Guidelines for Publishin...
UNIX Configuration Weakn...
How To Setup Nintendo Wi...
Windows Services Attacks
Introduction
Microsoft Malware Remova...
Security Scanner
Security Categories
 1. Adware/Spyware
 2. Antivirus
 3. Firewall
 4. Phishing
 5. Linux Security
 6. Windows Security
 7. Security Incidents
 8. Web Security
 9. P2P Security
Advertise With Us!
Latest Viruses / Threats
Bugtraq: reviving the botnets@ mailing list: a new statregy in fighting cyber crime
2008/8/28 15:43:04
Bugtraq: [USN-638-1] Yelp vulnerability
2008/8/28 14:00:23
Bugtraq: XSS and Data Manipulation attacks found in CMS PHPCart.
2008/8/28 14:00:23
Bugtraq: [security bulletin] HPSBUX02365 SSRT080118 rev.1 - HP-UX Running Apache, Remote Cross Site Scripting (XSS) or Denial of Service (DoS)
2008/8/28 14:00:23
Troj/Agent-HNI
2008/8/28 13:43:06
Downloads
 0.Fx MPEG Suite
 1.Daniusoft Video to MP4 Converter
 2.iProtectYou
 3.Deep Ball Defender
 4.Amazing Parrots Screensaver
 5.FlashCam Rebroadcasting server
 6.MysqlDataBackupTool
 7.Photo-Paint 9 script converter
 8.Fast PDF converter
 9.Apex iPod Video Converter Home Edition
Security News
FRAUDFacts Helps You...
10 Million Zombies A...
PayPal Slaps Phishin...
Over 95% of all PC a...
New Release of The R...
Extreme Phishing Abu...
Massachusetts Attorn...
The Great Firewall O...
New Windows Security...
New hacker threat ca...
RSS / Atom Feeds
SANS Top-20 Internet Security Attack Targets: Windows Services Attacks (2/2)  
Author: Max : 2006/11/20 Printer Friendly Page Tell a Friend
Windows Services Attacks 

W4.5 How to Protect against the Windows Services Vulnerabilities

  • Keep the systems updated with all the latest patches and service packs. If possible enable Automatic Updates on all systems.

  • Use Intrusion Prevention/Detection Systems to prevent/detect attacks exploiting these vulnerabilities.

  • In some cases, exposure to the vulnerability could be removed by disabling the corresponding service. For example, Windows Routing and Remote Access service could be disabled in most environments using Windows 2000. To do so, start the service manager interface. Locate the required service and right click it. Invoke the properties option in the popup menu. The "Startup Type" of the service can be modified to disable the respective service.

  • In some cases, null session access to the vulnerable interface could be removed as a work-around. It is a good practice to review your current RestrictAnonymous settings and keep it as stringent as possible based on your environment. read more...

  • Many of these vulnerabilities are found on interfaces offered through CIFS, and blocking ports 139/tcp and 445/tcp at the perimeter is essential for preventing remote attacks. It is also a good practice to block inbound RPC requests from the Internet to ports above 1024 to block attacks to other RPC based vulnerabilities using firewalls.

  • XP SP2 and Windows 2003 SP1 and R2 come with several security enhancements, including the Windows firewall and Security Configuration Wizard (Windows 2003 SP1 and R2 only). It is highly advisable to upgrade to these service packs, enable the Windows firewall and reduce attack surface with Security Configuration Wizard.



W4.6 References
Threats and Countermeasures: Security Settings in Windows Server 2003 and Windows XP

Windows XP Security Guide

Windows Server 2003 Security Guide
Using Windows Firewall

Security Configuration Wizard for Windows Server 2003
How to use IPSec IP filter lists in Windows 2000
How to block specific network protocols and ports by using IPSec

How to configure TCP/IP filtering in Windows 2000
 Page: 1 2 

Return to Category | Return To Main Index
Identity Theft Protection Services :
LifeLock Identity Theft Prevention Solution
Veracity Credit Optimization Services
Equifax Credit Watch
 Free Credit Report
Identity Truth
Privacy Matters 123



 

HOME | NEWS | SECURITY BLOG | TOOLS | DOWNLOADS | SECURITY BOOKS | TIPS | SITEMAP | TERMS AND CONDITIONS | INTERNET SECURITY SEARCH ENGINE | ADVERTISE ON THIS SITE | CONTACT
Nov '07 | Dec '07 | Jan '08 | Feb '08 | Mar '08 | Apr '08 | May '08 | Jun '08 
Best Security Downloads offers 4000+ free and free to try security downloads