[wellylug] Security

Don Jones don.jones at linuxmail.org
Tue Apr 9 21:13:32 NZST 2002 

> > Hi
> > First step in security issues.
> > What are the netbios-ssn, submission and auth ports ?
> Netbios is the protocol microsoft use for computers to identify and
> communicate with each other.  Netbios-ssn is probably a more secure
> implementation of netbios, providing encrypted authentication.  

$  cat /etc/services | grep netbios
netbios-ns      137/tcp                         # NETBIOS Name Service
netbios-ns      137/udp
netbios-dgm     138/tcp                         # NETBIOS Datagram Service
netbios-dgm     138/udp
netbios-ssn     139/tcp                         # NETBIOS session service
netbios-ssn     139/udp

The name service is to do the browsing/wins name resolution (depending on if you have a peer to peer or clien server network), it spams the network, saying hey look at me im a dumb win95 machine please call me bob - have a look with tcpdump - youll see a lot of low level traffic from port 137, its what makes network neighbourhood appear, sambas nmbd looks after this stuff. WINS/netbios naming is braindead - use DNS if you have the choice

once the machines know about each other they can exchange some files, mount shares etc using the datagram and session services. Session is used mostly as its more reliable than datagram (similar to tcp vs udp) datagram is used for multicasts. this is the SMB stuff and is done by smbd in samba.

check out :
http://www.oreilly.com/catalog/samba/chapter/book/ch01_01.html
its good for a bit of an intro.

If you want to mount a windows NT share on your linux box at startup chuck a line like this into your /etc/fstab file

//servername/documents  /home/don/shares/docs        smbfs   username=don,password=xxxxxxx,gid=don,uid=don 0 0 

Don Jones
-- 

Get your free email from www.linuxmail.org 


Powered by Outblaze

------------------------ Yahoo! Groups Sponsor ---------------------~-->
HOT! PRICE BREAKTHROUGH!
SUPER Tiny Wireless Video Camera UNDER $80 BUCKS --> ORDER NOW!
http://us.click.yahoo.com/y7toOC/8o6DAA/yigFAA/0XFolB/TM
---------------------------------------------------------------------~->

  .-.   Wellington
  /V\   Linux
 // \\  Users       
/(   )\ Group
 ^^-^^
        http://wlug.paradise.net.nz/

To unsubscribe from this group, send an email to:
wellylug-unsubscribe at egroups.com
  

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/

More information about the wellylug mailing list