When using shields-up website (grc.com) I get this message on one of the first pages:


{QUOTE->

Greetings [your name here...]!

Without your knowledge or explicit permission, the Windows networking technology which connects your computer to the Internet may be offering some or all of your computer's data to the entire world at this very moment!
(For example . . . that's how I know your name!) <-QUOTE}

I use jetico firewall and got 'true-stealth' pass on firewall test, but I was wondering what component of 'Windows networking technology' is transmitting the information above (i.e. my name) and can it be blocked? Also, can all websites see this information when you visit them?

Suggers

In my case, using Jetico v2. i have thos on the firts page.
{QUOTE-> Greetings!

Without your knowledge or explicit permission, the Windows networking technology which connects your computer to the Internet may be offering some or all of your computer's data to the entire world at this very moment! <-QUOTE}
No information given, only my IP on the page before.

{QUOTE-> In my case, using Jetico v2. i have thos on the firts page.

No information given, only my IP on the page before. <-QUOTE}

There must be something in my setup, other than my firewall, that I haven't tweaked, any experts have any ideas?

Im no expert and this is just a wild guess until one comes along but maybe your answering pings on port 113?? Do you and your computer share a name? Have you set grc.com as a trusted site?

{QUOTE-> Im no expert and this is just a wild guess until one comes along but maybe your answering pings on port 113?? Do you and your computer share a name? Have you set grc.com as a trusted site? <-QUOTE}

Yeah I should have mentioned above that my computer name is my name, according to shields up i passed the test fully and every single port was in stealth mode, I think port 113 is included in this so it shouldn't be answering pings, no grc.com is not a trusted site. I'm thinking it might be something to do with 'netBIOS' but I have no experience in this area.

If your showing stealthed then netbios shouldnt be getting through. Are you behind a router?

{QUOTE-> If your showing stealthed then netbios shouldnt be getting through. Are you behind a router? <-QUOTE}

No, I've just got a software firewall (jetico), but I use the same internet connection/modem with a desktop PC (windows 98 SE) and it doesn't come up with my name when using that, so it must be specific to my laptop (Windows XP SP2)

Whats differant? Same browser on both? Same Internet security settings?

{QUOTE-> Whats differant? Same browser on both? Same Internet security settings? <-QUOTE}

They have different operating systems (windows 98 desktop and XP laptop), I use both internet explorer and firefox on my laptop but whichever I use it still shows my computer name.
According to grc.com it seems to be the network file sharing properties of my computer that cause this, but I've no idea what I'm doing as I have no knowledge about network settings etc.
Suggers

I asume you are using on both OS Jetico v1?

{QUOTE-> I asume you are using on both OS Jetico v1? <-QUOTE}

No, I had problems running jetico v1 on my desktop so am using zonealarm free on that, with jetico v1 on my laptop.

Is your ISP by any chance blocking traffic to port 445?, If it is, shields-up would give a full stealth on all your ports.
If you have file-sharing activated on your system port 445 will be active.
The only way to make this really safe is to use a router, then Netbios can't make trouble and you can safely share files between the laptop and the PC.

I am by no means an expert in this, but this is what i know.

Lamehand

{QUOTE-> Is your ISP by any chance blocking traffic to port 445?, If it is, shields-up would give a full stealth on all your ports.
If you have file-sharing activated on your system port 445 will be active.
The only way to make this really safe is to use a router, then Netbios can't make trouble and you can safely share files between the laptop and the PC.

I am by no means an expert in this, but this is what i know.

Lamehand <-QUOTE}

Thanks for that, how would I check if I had file-sharing on? I don't share files so is it safe to switch it off? how would I switch file sharing off?

Suggers

You could try to disable file and printer sharing under network-settings in your configuration screen, look for the properties of your connection.

Lamehand

{QUOTE-> You could try to disable file and printer sharing under network-settings in your configuration screen, look for the properties of your connection.

Lamehand <-QUOTE}

Ok I'll give that a try, thanks.
Suggers

Update:

It must be something to do with jetico firewall configuration, as when I disable zonealarm free on my desktop it also shows my name on that computer as well, but when zonealarm is running, it doesn't. I haven't configured zonealarm or jetico in any way other than allowing programs access, so I'm surprised at this as I thought Jetico would have been more secure and likely to stop this than zonealarm free...
Does anyone know what needs tweaking on jetico to stop this?

Cheers
Suggers

Just a question; is this Jetico you use a rule based firewall?

Lamehand

{QUOTE-> Just a question; is this Jetico you use a rule based firewall?

Lamehand <-QUOTE}

You can set rules, but by default it's set to "optimal protection" and I haven't set any rules other than program rules, i.e. allowing AV to access internet etc.

You could set some rules to block ports 137,138,139 and 445 (both directions) UDP/TCP.
Even if you stopped file and printer-sharing, Netbios is still running.

Lamehand

Do a file search for VNBT.386 and rename it to something like VNBT.386old which will disable NetBios.


StevieO

{QUOTE-> You could set some rules to block ports 137,138,139 and 445 (both directions) UDP/TCP.
Even if you stopped file and printer-sharing, Netbios is still running.
<-QUOTE}


{QUOTE-> Do a file search for VNBT.386 and rename it to something like VNBT.386old which will disable NetBios.
<-QUOTE}

I'll try both of these, thanks for your help.

Suggers

{QUOTE-> Yeah I should have mentioned above that my computer name is my name, according to shields up i passed the test fully and every single port was in stealth mode, I think port 113 is included in this so it shouldn't be answering pings, no grc.com is not a trusted site. I'm thinking it might be something to do with 'netBIOS' but I have no experience in this area. <-QUOTE}
Hi Suggers,

You need to read the instructions at grc.com accessible from the Shields Up! webpage for disabling NetBios. There are several links there usually at the bottom of one of the webpages as I recall. From the Shields Up! webpage, there are numbered paragraphs to other web pages that explain how to do this - start at #2.

-- Tom