Connecting to a Windows Share Outside a Network...
Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Connecting to a Windows Share Outside a Network...

  1. #1
    Member
    Join Date
    Apr 2002
    Posts
    52

    Thumbs up Connecting to a Windows Share Outside a Network...

    Myself and a few other friends have been doing a lot of LAN games and such over the holiday break. We often share files over the network and leave our C drives shared. Now I never really considered this a security risk or anything at the time. Durring the week we were playing over the net and I wanted to send a friend of mine some files and it came to my curiostiy, couldnt I just send them to his shared folder if I had his IP? Well I couldnt for some reason and so I figured it wasnt a big deal and sent them through AIM.

    Anyway what I really want to know is what are the security risks of sharing drives? If I leave my C drive shared is it vulnerable to people who want to steal my files? Since then I have put a password on my share and my friends have done the same. But if we wanted to send something to each other, is it possible to connect to the share, put in the password, and transfer the files??

    My friend tried to conenct to my share like this:

    \\myip-address\c (in IE)

    but that didnt work he said. Is there a way to do it? and if so what are the risks I would be taking?

  2. #2
    Senior Member
    Join Date
    Nov 2002
    Posts
    606
    Liquid_Darkness,

    If you share your C drive (and someone want to "hack" your PC) then you are living your "doors" completely open. Entering in your C drive is entering in all your machine by plenty of different ways. They could see your Windows folder and so your registry, win.ini and system.ini... and much more... in a few words... they can do what they want with your PC. If you gonna share folders "at least" don't share the C drive, just tell your friends to create a folder to share your files and you do the same. This way at least you are less vulnerable that if you're sharing your C drive.

    Take care...

    I forgot... it doesn't matter your shared folders have passwords... there's a lot of programs out there to decipher them, in this "simple" hacks, passwords are not obstacles for hackers.

  3. #3
    Senior Member
    Join Date
    Nov 2002
    Posts
    174
    dont do it in IE... do it from Start>>Run>>ip.address\share
    Mike Reilly
    bluebeard96@yahoo.com

  4. #4
    Member
    Join Date
    Apr 2002
    Posts
    52

    Unhappy Ahhh..

    Yeah I figured that if they COULD get into a shared folder from outside a network then it would be a huge security risk. and if I had write access enabled it would be even worse. Okay so I guess we'll set it up to share just a specific folder with it passworded. How do we connect remotly to the folder? just like on a network? \\computername(orIP)\folder\folder\ or what?

    Thanks for the help

  5. #5
    Senior Member
    Join Date
    Nov 2002
    Posts
    174
    yep, you've got it.
    Mike Reilly
    bluebeard96@yahoo.com

  6. #6
    Member
    Join Date
    Apr 2002
    Posts
    52

    Oh thanks...

    Originally posted here by bluebeard96
    dont do it in IE... do it from Start>>Run>>ip.address\share
    Ahh thanks didnt see that.

  7. #7
    Senior Member
    Join Date
    Nov 2002
    Posts
    174
    yeah... and I notice I forgot the \\ in front of the ip, but you know that already!
    Mike Reilly
    bluebeard96@yahoo.com

  8. #8
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,325
    \\computername(orIP)\folder\folder\
    it would be \\ip address\foldershare

    if you wanted to make it "hidden"... you could always put a $ after the sharename when you define the share.

    then they would connect \\ip address\foldershare$

    I only say this because if an unauthorized user did a simple

    net view ipaddress

    they would see your share and you'd make it that much easier for them.

    Then... set the properties on the sharefolder so only you have full access, and give everyone else read access only, unless they need to be able to write to your drive too.

    It would also be good to keep a firewall on there and give them individually access as they need it.

    there is plenty more stuff to do, but if you don't need the share on any longer than when you are playing a game... then disable it!
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  9. #9
    Senior Member
    Join Date
    Jun 2002
    Posts
    405
    You could also connect to the computer such that it appears as a drive on your computer.

    net use g: \\IPAddress\SharedFolder

    To disconnect, just type:

    net use g: /delete

    Also, there are vulnerabilities in the Win9x NetBios password system which in the past have basically rendered it useless (with patches should be fixed). There is an exploit at the top of this page for the NetBios password system. PQWak is a program which can crack NetBios passwords, you can download it here. Whether these will work or not is another thing, but it would be worth testing them on your system to make sure that no-one can use them to crack your shares.

  10. #10
    Member
    Join Date
    Apr 2002
    Posts
    52

    Exclamation

    ohh thats cool.. so net share (ipadress) will show shared folders on a computer? and $ after the share hides it from it?

    Is net share a console command in windows or is it for *nix's? i wasnt aware people could see my shares like that.

    Originally posted here by powertoad5000
    You could also connect to the computer such that it appears as a drive on your computer.

    net use g: \\IPAddress\SharedFolder

    To disconnect, just type:

    net use g: /delete

    Also, there are vulnerabilities in the Win9x NetBios password system which in the past have basically rendered it useless (with patches should be fixed). There is an exploit at the top of this page for the NetBios password system. PQWak is a program which can crack NetBios passwords, you can download it here. Whether these will work or not is another thing, but it would be worth testing them on your system to make sure that no-one can use them to crack your shares.

    oh cool thanks for the links. I dont run a 9x system anymore but one of my friends does. I'll make good use of these tools.

    A few more questions.. so net use is a program ran from console that works with network shares and such? I can use it to create a fake drive that is actually a share on another computer...

    And netbios is the protocol for filesharing in windows or what?

    thanks for the help this is really usefull info.

    ohh thats cool.. so net share (ipadress) will show shared folders on a computer? and $ after the share hides it from it?

    Is net share a console command in windows or is it for *nix's? i wasnt aware people could see my shares like that.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •