Ports Blocked to Improve Security
Posted December 2, 2004
Beginning Monday, December 6, ITS will begin blocking additional ports due to a vulnerability in the Microsoft Internet Name Service (see http://support.microsoft.com/kb/890710/EN-US/) and dramatically increased probes to port 1433 relating to MS SQL server vulnerabilities (see http://www.kb.cert.org/vuls/id/635463).
The following ports will be blocked permanently at the border router (both directions) on a priority basis:
- tcp/udp 42
- tcp/udp 1433
Please contact security@psu.edu if you anticipate major operational issues upon implementation of these additional blocks. Penn State Anywhere VPN can be used for individuals that need these ports (see http://aset.its.psu.edu/vpn/).
ITS apologizes for not providing an earlier warning of these changes, but immediate action is warranted due to the nature of the threats and, with regard to port 1433, observed hostile activity on our network.
