unknown access .... locked
Boyce, Nick
nick.boyce at eds.com
Tue Apr 15 11:24:55 GMT 2003
Hey Gilles - you wrote :
> My OpenVMS is online on the internet ...
> ... unwanted people that was creating PROCESS on the
> workstation
[gulp]
I hope you have your access controls set really tightly - the Internet is
full of Bad People trying to find you. My home PC is scanned by people
looking for open SMB ports approximately every 2 to 3 minutes, all the time
I'm online. Actually, I think a lot of this is automated scanning by some
of the modern viruses, which try to spread to any world-writable file shares
they can find.
I *really* think you should install some kind of firewalling facility
between your VMS system and the outside world - even if this is only a
packet filtering router. Set it to deny access to UDP ports 137, 138 and
TCP port 139 from anywhere outside your network. Or at the very least, use
the "hosts allow" directive in smb.conf to restrict access - but if you do
that then you're relying on Samba's own security being watertight - it's
better to stop the Bad People from even getting near your Samba.
Nick Boyce
EDS, Bristol, UK
More information about the samba-vms
mailing list