Agnitum Outpost Free firewall and RPC service

Discussion in 'Windows Desktop Systems' started by gballard, Jan 20, 2003.

  1. gballard

    gballard Moderator

    Messages:
    549
    Does anyone know if there is a way to add this service to be blocked by the firewall? That is the only port that I show not being Stealthed by the firewall. Any help would be appreciated.
     
  2. Gus K

    Gus K NTFS abuser

    Messages:
    380
    Location:
    USA
    Port 135? You got block Generic Host process, svhost.exe. Had to do the same with Sygate.
     
  3. Enyo

    Enyo Moderator

    Messages:
    1,338
    Blocking Generic Host process will do the trick but a blanket deny for svchost may not be the best idea, it does of course run alot of services for windows that need internet access, things like NTP and DNS.

    Make a system wide rul blocking 135 is the best idea i can think of.

    If your not using a LAN or SMB file print services at home or any DCOM dependent apps then you may want to try this:

    http://www.uksecurityonline.com/husdg/windowsxp/close135.htm

    Ive tested it and it does indeed stop svchost from listening on 135 RPC.