 |
 |
Leopard with chinks in its armour (Page 2)
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
kman: how are you detecting that Kerberos is open?
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Sep 2000
Location: San Francisco
Status:
Offline
|
|
My port scan revealed Port 88 kerberos as being open.
Just to add to the confusion, I brought in my laptop to work to connect to my work desktop and was not able to connect until I turned on Allow all incoming connections, even though I had file sharing turned on and my desktop was listed in the SHARED sidebar of my laptop. I even tried using cmd-k to connect to no avail. The connection just kept failing. As soon as I turned my desktop back to Allow all incoming connections I was able to connect immediately.
I am now very confused.
kman
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
You did a local port scan? There are a lot of local ports that are open, that doesn't mean a whole lot. I'm not sure why Apple needs to run a Kerberos server, but whatever...
The real concern is connections from the outside world. For this, you'll have to use nmap, not netstat to query yourself (and from another machine, of course)
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
kman: were you connecting via AFP? Samba? NFS? Maybe Samba needs the netbios port open that the firewall blocks? I dunno, very rarely connect to Windows machines.
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Sep 2000
Location: San Francisco
Status:
Offline
|
|
|
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Sep 2000
Location: San Francisco
Status:
Offline
|
|
[edit] just plain wrong, so I deleted it [/edit]
kman
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
kman: I think the ultimate test would be to do a port scan while the firewall is in each of its three possible settings. Maybe I'll try this tomorrow....
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Sep 2000
Location: San Francisco
Status:
Offline
|
|
Any idea why Word suddenly wants access through my firewall?
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Sep 2000
Location: San Francisco
Status:
Offline
|
|
Well, here are my results with post scanning. Note that File Sharing (AFP) and Screen Sharing are on in all cases.
1) Allow all incoming connections:
Open TCP Port: 88 kerberos
Open TCP Port: 548 afpovertcp
Open TCP Port: 3998
Open TCP Port: 5900 vnc-server
2) Block all incoming connections:
Open TCP Port: 88 kerberos
Open TCP Port: 548 afpovertcp
Open TCP Port: 5900 vnc-server
3) Set access for specific services and applications
Open TCP Port: 88 kerberos
Open TCP Port: 548 afpovertcp
Open TCP Port: 5900 vnc-server
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Sep 2000
Location: San Francisco
Status:
Offline
|
|
Did we decide this was no longer an important issue?
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
kman42: I'm not sure it is an issue. Seems to me that it's just a poorly designed, unclear GUI. Am I missing something?
|
|
|
| |
|
|
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Feb 2007
Status:
Offline
|
|
MAC need to fix this fast, viruses are cropping up much more as leopard is released, im sure i'm infected, im going to the Apple store to complain about his.
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
Originally Posted by The Yorkshire Rapper 
MAC need to fix this fast, viruses are cropping up much more as leopard is released, im sure i'm infected, im going to the Apple store to complain about his.
Your Mac has a built-in microphone. What you need to do to keep your computer safe is speak clearly into the mic: "enter Macintosh stealth mode". This will prevent you from getting any viruses.
|
|
|
| |
|
|
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Feb 2007
Status:
Offline
|
|
Originally Posted by besson3c
Your Mac has a built-in microphone. What you need to do to keep your computer safe is speak clearly into the mic: "enter Macintosh stealth mode". This will prevent you from getting any viruses.
Yes, I know that, but its no good if i am already infected.
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
stealth mode will also help disinfect. I suggest putting your computer in stealth mode right now. It may take a few tries before your voice is correctly recognized though, Apple needs to work on improving the speech recognition...
|
|
|
| |
|
|
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Feb 2007
Status:
Offline
|
|
where is the microphone, is it next to the camera?
|
|
|
| |
|
|
|
|
|
|
|
Senior User
Join Date: Nov 2002
Location: US
Status:
Offline
|
|
Now this thread is officially dead?
|
|
|
| |
|
|
|
|
|
|
|
Administrator  Join Date: Apr 2001
Location: San Antonio TX USA
Status:
Offline
|
|
Yep, dead as a doornail. Yorkshire, they're pulling your leg. You are NOT infected-you can't be infected with a Mac the way a PC user can. It cannot happen. Post a new thread (probably in this forum) about what gives you the impression you're infected, and I'm sure we'll figure it out with you.
|
Glenn -----OTR/L, MOT, Tx
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
Originally Posted by The Yorkshire Rapper
where is the microphone, is it next to the camera?
Top center of your Mac desktop/laptop..
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: May 2007
Status:
Offline
|
|
ghporter, don't have fun with him. If his MAC is infected, heneeds to enter stealth mode ASAP!
the MAC systme is very vulnrable nowadays and it's a good thing they introduced stealth mode.
Please also note, Yorkshire, that since stealth mode, by it's very nature is "stealthy," you will not notice a difference in what the omputer shows on screen. The best way to figure out if you've entered stalth mode is to Right Click on your Hard Drive icon, select "Get Info" and them look down to "Details." If under details it says the owner is "System", it means your HD has been taken over by the system to wipe out the virus.
(
Last edited by 0157988944; Nov 4, 2007 at 01:13 PM.
)
|
|
|
| |
|
|
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Jul 2001
Location: Spokane WA
Status:
Offline
|
|
I liked the firewall interface in Tiger because with the firewall on you could activate certain functions and the firewall would make the needed ports available. The firewall in Leopard is more confusing to me. I wish someone would make it clear.
|
|
|
| |
|
|
|
|
|
|
|
Senior User
Join Date: Nov 2002
Location: US
Status:
Offline
|
|
Originally Posted by fortepianissimo
This is just perfect - even after "Install startup file" in Flying Buttress, the ruleset installed doesn't survive between boots. Actually from time to time the ipfw ruleset is just reverted by some mysterious force!
So how do we make ipfw ruleset stick?
I guess the reason why Flying Buttress rules don't stick is that the fwutil in /Library/StartupItems/Firewall is a.. PPC binary! For now I switched to WaterRoof
WaterRoof ipfw firewall frontend
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
If you guys really want hands on, direct control of your firewall, why not just create your rules in a text editor? It's really not that hard to do, and you can copy the examples generated by these GUI apps...
|
|
|
| |
|
|
|
|
|
|
|
Addicted to MacNN
Join Date: Aug 2004
Location: FFM
Status:
Offline
|
|
|
|
|
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
 
|
|
|
Forum Rules
|
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
Top