Ports config (firewall settings) on Win2003 server
Our server was hacked yesterday, seems to be via WMI. Can anybody give us an example how to protect the W2003 server in best way. I mean what ports to open (for who) and what ports to close absolutely ? Also any online manual (or tips) can be appreciated. Thanx in advance.
you'll also want UDP port 53 open for DNS traffic, and port 110 for POP3 and 143 for IMAP.
SSL (https) is on port 443.
Also, if you're the only one accessing the server via remote desktop, I'd either change the RDC port to something else (It doesn't add a massive amount of security, but every little helps) or (much better) block access to that port except from your own, static IP address.