how to close port 139 (using zone alarm or otherwise) and what are the harms in closing it ? cud not find any file c:/windows/system/vnbt.386

hi smanish, for more info on this issue go to www.thepublicworks.com security section and link to Disable Ports 137-139. hope this helps, murve

The article above has good info, but this is a very simple answer here: If you disable Port 137-139 (NetBIOS) then two things can happen. Good: You will be (mostly) invisible on a Windows network. This make you a harder target. Bad: You will be invisible on a Windows network. People will not be able access your computer to get files, send net.exe messages, etc. By the way, ZoneAlarm doesn't resist SubSeven and LiquidAV attacks, it goes down all too easily. The only firewall that I've found to resist these attacks is Symantec Personal Firewall.

thanks friends .. i m trying to follow up ur steps .. i wud appreciate if u also read my other message which details my problem .. its message id is 4772 thanks in advance ;)

www.grc.com has good info on this

here's more good info: http://www.hsc.fr/ressources/breves/min_srv_res_win.en.html

Closing port 139 is a good idea simply because it makes you more secure. There are many writeups on what attacks can happen on port 139, but there are probably other vulnerabilites that haven't been discovered yet. It's better to play it safe and block ports such as 139 for protection. I personally use ZoneAlarm. It allows me to configure IP addresses I can "trust" to send me data over port 139 (thus I can network with them), and ZoneAlarm blocks port 139 requests from all other IP addresses. Brad Peterson