Secure Netbios?
Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Secure Netbios?

  1. #1

    Secure Netbios?

    Is there anyway that I could secure my netbios port? I mean against attacks? And peopel prom trying to steal the passwords?
    I wanna be able to keep my filesharing enabled so I can use it from time to time, I mean I have a good firewall (Zone Alarm) And was wondering if there was another way to also secure the netbios?
    Share on Google+

  2. #2
    Old-Fogey:Addicts founder Terr's Avatar
    Join Date
    Aug 2001
    Location
    Seattle, WA
    Posts
    2,007
    You could either put big passwords on your shares, OR restrict it so that your shares only work on your LAN card, but not your modem. How are you using them?
    [HvC]Terr: L33T Technical Proficiency
    Share on Google+

  3. #3
    Well I'm using it over the internet to give shares to a person. I wish there was a way to just restrict it to an IP. I have my IIS going but it's not that great
    Share on Google+

  4. #4
    Old-Fogey:Addicts founder Terr's Avatar
    Join Date
    Aug 2001
    Location
    Seattle, WA
    Posts
    2,007
    Well, I'd suggest using a long (at least 8 char) password on the share, and perhaps with an underscore or something funky somewhere in it. If you have some sort of personal rule-based firewall, like Tiny's Personal Firewall or Conseal, you could block any incoming traffic to 137-139 (UDP and TCP) except for their address. Or if they have a dialup, the range of IPs they tend to have. It would cut down on risks by quite a bit, those two in tandem.
    [HvC]Terr: L33T Technical Proficiency
    Share on Google+

  5. #5
    Uhm.. Why not filter the ports to outgoing traffic? A simple firewall will take care of that. Allowing only trusted hosts through. Not to mention (common sense) use better passwords.
    Jason Parker - http://www.o-negative.net
    o-Negative: Information Network
    Share on Google+

  6. #6
    Junior Member
    Join Date
    Aug 2001
    Posts
    1
    u can also not only a large pass but use caps like MiSsIsSipPi cause most crack prog use only reg font no caps and to run a crack prog that also use's caps takes to long to find a pass and most crackers loss intrest in 3 to 4 hours
    Share on Google+

  7. #7
    Old-Fogey:Addicts founder Terr's Avatar
    Join Date
    Aug 2001
    Location
    Seattle, WA
    Posts
    2,007
    Originally posted by jparker
    Uhm.. Why not filter the ports to outgoing traffic? A simple firewall will take care of that. Allowing only trusted hosts through. Not to mention (common sense) use better passwords.
    Didn't I just say that? (Except more of a recommendation on blocking incoming rather than outgoing NBT info)
    [HvC]Terr: L33T Technical Proficiency
    Share on Google+

  8. #8
    Member
    Join Date
    Sep 2001
    Posts
    89
    u can also not only a large pass but use caps like MiSsIsSipPi cause most crack prog use only reg font no caps and to run a crack prog that also use's caps takes to long to find a pass and most crackers loss intrest in 3 to 4 hours
    Netbios passwords are not case sensitive, and dont preserve fonts.

    By the way,
    Recently there was a bug discovered in the Netbios password authentication. Anyone exploiting that bug can crack the passwords at the rate of about 1 char/ 5 seconds in good conditions over dial-up. Hence making any password crackable in less then one minute.


    If you dont believe me, then send me and IP address with protected shares (only works on Win95, 98, and ME boxes) and i'll give a demonstration.

    I'd suggest using FTP instead.
    It's not prefect, but its alot more secure then NetBios.

    -8trak
    Share on Google+

  9. #9

    Red face NetBIOS...no thanks...

    I suggest ripping it off and installing some third party sharing tool if you want to share files. NetBIOS is NOT safe and it never will be.
    Heres how to rip it off completely:
    http://www.geocities.com/jansson_markus/netbios.html



    Markus
    My privacy related homepage and PGPkeys:
    http://www.markusjansson.net
    Share on Google+

  10. #10
    Old-Fogey:Addicts founder Terr's Avatar
    Join Date
    Aug 2001
    Location
    Seattle, WA
    Posts
    2,007
    I'd just only have it enabled on my network adapter, and not on my dialup adapter... Because I trust the people in my house.
    [HvC]Terr: L33T Technical Proficiency
    Share on Google+

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •