Monitoring-closing ports/freeware ?

[Guest]

Archived from groups: microsoft.public.windowsxp.security_admin (More info?)

1.Why is isass.exe always running? Can I disable it?
lsass.exe is a system process of the Microsoft Windows security mechanisms.
It specifically deals with local security and login policies.

2.Can I still surf if I set my system to drop connections to all ports but
http 80 or https 443?
Does this prevent port scans? Is there are freeware similar to Netscan tools
pro?

 

[Guest]

Archived from groups: microsoft.public.windowsxp.security_admin (More info?)

1. You answered your question. You cannot disable LSASS.EXE.

2. Yes, set an IPsec policy to block all inbound traffic except what you
want to permit. See my article "Using IPsec to lock down a server" at http://www.microsoft.com/technet/itsolutions/network/security/ipsecld.mspx.

Steve Riley
steriley@microsoft.com



> 1.Why is isass.exe always running? Can I disable it?
> lsass.exe is a system process of the Microsoft Windows security
> mechanisms.
> It specifically deals with local security and login policies.
> 2.Can I still surf if I set my system to drop connections to all ports
> but
> http 80 or https 443?
> Does this prevent port scans? Is there are freeware similar to Netscan
> tools
> pro?