Originally posted by Logik!
Avoiding Windows Messenger SPAM
http://www.ultratech-llc.com/KB/?File=WinPopup.TXT
Avoiding Windows Messenger SPAM
Recently, there has been a proliferation of SPAM via the Messenger service. The best protection against this, of course, is to have a proper firewall between your machines
and the Internet. Here's more info on the spam and things you can do to stop it.
You'll want to block traffic to the NetBIOS/SMB ports (TCP/UDP 135, 137-139, 445). Or, you can turn off the Messenger service, if you don't need it for network alerting purposes, but getting and configuring a proper firewall is a better resolution. Turning off the service will simply leave you vulnerable to other NetBIOS attacks.
http://support.microsoft.com/?KBID=330904
http://www.microsoft.com/windowsxp/pro/using/howto/communicate/stopspam.asp
http://www.re-quest.net/computers/messenger-spam/
http://www.xpannoyances.com/exec/show/article03-300
http://www.stopmessengerspam.com/
http://www.wired.com/news/technology/0,1282,55795,00.html
http://www.jmu.edu/computing/security/info/winmsg.shtml
http://www.auburn.edu/oit/security/messengerService.html
http://www.practical-tech.com/infrastructure/i11042002.htm
http://www.techtv.com/screensavers/answerstips/story/0,24330,3374542,00.html
http://www.seifried.org/security/ports/1000/1900.html
http://www.seifried.org/security/ports/5000/5000.html
MESSENGER SERVICE VS MSN MESSENGER
In another episode of crazy Microsoft naming, there are not one, but TWO Windows components/services responsible for communication. Both are generically generically
referred to as the Windows Messenger Service.
People new to Windows 2000 and XP will likely hear this description and think of the Instant Messenger products such as Yahoo Messenger, AIM, ICQ and MSN Messenger.
People who have used NT 3.x and Win3.x will be more acquainted with the old school Messenger service which facilitates NET SEND messages.
The anti-SPAM information found in the previous section refers to the native, text-based service (Messenger) and not the GUI-based Instant Messaging app (MSN Messenger).
To address SPAM with the text-based service, be sure to lock down your NetBIOS connectivity from the Internet.
To address SPAM with the GUI-based app, don't tie your account to Hotmail or list your account in the public Messenger directory.
INSTANT MESSAGING PRODUCTS
To add to the confusion, there are no less than three versions of Instant Messaging clients available from Microsoft today:
Windows Messenger 4.7
MSN Messenger 5.0
Instant Messenger for Microsoft Exchange 2000
MSN Messenger is more tightly integrated to Microsoft's MSN Internet Service, but works almost identically to Windows Messenger 4.7
Windows Messenger 4.7 is only available for Windows XP whereas MSN Messenger 5.0 is available for the following:
Windows 98/ME
Windows NT4
Windows 2000
Windows XP (Pro & Home)
MSN Messenger is also available for other platforms such as the Mac, the Pocket PC, and Microsoft TV.
(I have no idea why there are so many versions...)
Login
Register
FAQ
Search
© 2010 Future US, Inc. All rights reserved.