We are a small office here, less than 25 workstations. We're running SBS2000, using Exchange and SQL Server for office applications. Our normal operating hours are from 8am-5pm. An employee wants to use our server, somehow as a game server port after hours. All I have to do is open up port 28960 for him and he should be able to do it. Any comments about this? I'm not sure if I want to do this, if it's safe or not. But also I'm curious if there is any other things I can expect by opening up that port? Wondering if that's a port hackers like to use also. I have all ports closed but the ones I need, I think it's less than 5 I have open.
In my wildest imagination I cannot understand why you would allow an employee to use company resources for personal gaming. Talk about ASKING for trouble. Keep the ports closed and don't tax your system any more than you have to. It would be hard to explain why work cannot be accomplished because someone was up all night playing UNREAL TOURNAMENT.
"Anthony Smith" <anth...@peconet.com> wrote in message
> We are a small office here, less than 25 workstations. We're running > SBS2000, using Exchange and SQL Server for office applications. Our normal > operating hours are from 8am-5pm. > An employee wants to use our server, somehow as a game server port after > hours. > All I have to do is open up port 28960 for him and he should be able to do > it. > Any comments about this? I'm not sure if I want to do this, if it's safe or > not. But also I'm curious if there is any other things I can expect by > opening up that port? Wondering if that's a port hackers like to use also. > I have all ports closed but the ones I need, I think it's less than 5 I have > open.
> In my wildest imagination I cannot understand why you would allow an > employee to use company resources for personal gaming. Talk about ASKING for > trouble. Keep the ports closed and don't tax your system any more than you > have to. It would be hard to explain why work cannot be accomplished because > someone was up all night playing UNREAL TOURNAMENT.
> > We are a small office here, less than 25 workstations. We're running > > SBS2000, using Exchange and SQL Server for office applications. Our > normal > > operating hours are from 8am-5pm. > > An employee wants to use our server, somehow as a game server port after > > hours. > > All I have to do is open up port 28960 for him and he should be able to do > > it. > > Any comments about this? I'm not sure if I want to do this, if it's safe > or > > not. But also I'm curious if there is any other things I can expect by > > opening up that port? Wondering if that's a port hackers like to use also. > > I have all ports closed but the ones I need, I think it's less than 5 I > have > > open.
>>>We are a small office here, less than 25 workstations. We're running >>>SBS2000, using Exchange and SQL Server for office applications. Our
>>normal
>>>operating hours are from 8am-5pm. >>>An employee wants to use our server, somehow as a game server port after >>>hours. >>>All I have to do is open up port 28960 for him and he should be able to
> do
>>>it. >>>Any comments about this? I'm not sure if I want to do this, if it's safe
>>or
>>>not. But also I'm curious if there is any other things I can expect by >>>opening up that port? Wondering if that's a port hackers like to use
> also.
>>>I have all ports closed but the ones I need, I think it's less than 5 I
> We are a small office here, less than 25 workstations. We're running > SBS2000, using Exchange and SQL Server for office applications. Our normal > operating hours are from 8am-5pm. > An employee wants to use our server, somehow as a game server port after > hours. > All I have to do is open up port 28960 for him and he should be able to do > it. > Any comments about this? I'm not sure if I want to do this, if it's safe or > not. But also I'm curious if there is any other things I can expect by > opening up that port? Wondering if that's a port hackers like to use also. > I have all ports closed but the ones I need, I think it's less than 5 I have > open.
I truly was NOT being funny. Sounds like YOU are the one wanting to open a port for gaming. Hey...it's your career. Have at it, but I would not expect any support in here for doing it and if you were one of my employees you'd be fired for even thinking about doing it.
"Anthony Smith" <anth...@peconet.com> wrote in message
> We are a small office here, less than 25 workstations. We're running > SBS2000, using Exchange and SQL Server for office applications. Our normal > operating hours are from 8am-5pm. > An employee wants to use our server, somehow as a game server port after > hours. > All I have to do is open up port 28960 for him and he should be able to do > it. > Any comments about this? I'm not sure if I want to do this, if it's safe or > not. But also I'm curious if there is any other things I can expect by > opening up that port? Wondering if that's a port hackers like to use also. > I have all ports closed but the ones I need, I think it's less than 5 I have > open.
Worst case ... let's assume it's the boos who wants to do the gaming. I would tell the boss the choices are: 1) find someone to replace me because I quit 2) see choice #1
-- Kevin Weilbacher [SBS-MVP] "The days pass by so quickly now, the nights are seldom long"
"Anthony Smith" <anth...@peconet.com> wrote in message
> We are a small office here, less than 25 workstations. We're running > SBS2000, using Exchange and SQL Server for office applications. Our normal > operating hours are from 8am-5pm. > An employee wants to use our server, somehow as a game server port after > hours. > All I have to do is open up port 28960 for him and he should be able to do > it. > Any comments about this? I'm not sure if I want to do this, if it's safe or > not. But also I'm curious if there is any other things I can expect by > opening up that port? Wondering if that's a port hackers like to use also. > I have all ports closed but the ones I need, I think it's less than 5 I have > open.
Well, now we know what kind of thread gets the SBS folk hot and heavy on an ISA list!
Aside from business issues, if the boss wants to be a good guy and allow use of the network <after hours>, IMO the situation can be studied to determine whether it's safe or not.
Assuming that no foreign machine will be introduced to the network, then it really comes down to what protocols and applications will be used. Of course, any file transfers should be considered dangerous and probably should not be supported.
Beyond that, Who wrote the program? Can the program's installation binary be trusted and verified? What are the protocols being used? Will support of these games require any special configuration which could lessen security? Can you restrict access to specific machine(s)?
If any of those questions can't be answered or would be answered negatively, then I'd say you are assuming some additional risk a business ordinarly shouldn't want.
I can't tell you how many SBServer installations I've done where the Owner wanted to play their Yahoo games... so non- business use <is> a common request...
>Worst case ... let's assume it's the boos who wants to do the gaming. I >would tell the boss the choices are: >1) find someone to replace me because I quit >2) see choice #1
>-- >Kevin Weilbacher [SBS-MVP] >"The days pass by so quickly now, the nights are seldom long"
>> We are a small office here, less than 25 workstations. We're running >> SBS2000, using Exchange and SQL Server for office applications. Our >normal >> operating hours are from 8am-5pm. >> An employee wants to use our server, somehow as a game server port after >> hours. >> All I have to do is open up port 28960 for him and he
should be able to do
>> it. >> Any comments about this? I'm not sure if I want to do this, if it's safe >or >> not. But also I'm curious if there is any other things I can expect by >> opening up that port? Wondering if that's a port
I'd suggest that hosting a server is the worst possible end of the deal.
I'd barter use of that port as a *client* (why does he need to host his own server?), that way if one of the internal machines does get 0wned, it's likely just going to be the client machine. Er, at least initially.
All you need for that is a protocol definition, or if you're an avid gamer, the Firewall Client and a carte blanche rule (game servers tend to run on different ports when hosted by ISPs, and so on).
LAN games are one thing - allowing nasty Internet skiddies in to your network to play might be asking for more trouble than the game's worth.
My $0.01 (due to exchange rate fluctuation). --
This posting is provided "AS IS" with no warranties, and confers no rights.
"Anthony Smith" <anth...@peconet.com> wrote in message
We are a small office here, less than 25 workstations. We're running SBS2000, using Exchange and SQL Server for office applications. Our normal operating hours are from 8am-5pm. An employee wants to use our server, somehow as a game server port after hours. All I have to do is open up port 28960 for him and he should be able to do it. Any comments about this? I'm not sure if I want to do this, if it's safe or not. But also I'm curious if there is any other things I can expect by opening up that port? Wondering if that's a port hackers like to use also. I have all ports closed but the ones I need, I think it's less than 5 I have open.
Besides the sheer lunacy of running a gaming server off your production server, what exactly makes you think you would be able to limit game hosting to 'off-hours'?
I have a few friends that run their own businesses, and they have RADICALLY different views on how to run a company than most. For example, one of them stocks the company Sobe' fridge with WHATEVER you like to drink, and its there for the taking free all day. You want to buy a book to further your horizons? Company buys it for you. How about the multiple company sponsored fish tanks and freedom of direction in your productivity?
Point being I know alot of people that like to be 'cool' bosses, and its a great new look on corporate America. Considering letting your employee (assuming this really isn't you asking for you) host a game server is a great side benefit that probably buys you some goodwill and perhaps some loyalty. But being a 'good' boss also means you can't be stupid, and hosting a gaming server off your production server is utter insanity.
If you really want to help this chap out, tell him that if HE provides a box, you MAY offer to hang it off your connection in a DMZ. Then he gets to host games off a fast connection (the assumed reason he wants to host from work and not home) and you get to be a good guy. Just be aware that if this box starts spewing viruses or the like out your business connection your ISP may shut you down.
> I'd suggest that hosting a server is the worst possible end of the deal.
> I'd barter use of that port as a *client* (why does he need to host his own > server?), that way if one of the internal machines does get 0wned, it's > likely just going to be the client machine. Er, at least initially.
> All you need for that is a protocol definition, or if you're an avid gamer, > the Firewall Client and a carte blanche rule (game servers tend to run on > different ports when hosted by ISPs, and so on).
> LAN games are one thing - allowing nasty Internet skiddies in to your > network to play might be asking for more trouble than the game's worth.
> My $0.01 (due to exchange rate fluctuation). > --
> This posting is provided "AS IS" with no warranties, and confers no rights.
> We are a small office here, less than 25 workstations. We're running > SBS2000, using Exchange and SQL Server for office applications. Our normal > operating hours are from 8am-5pm. > An employee wants to use our server, somehow as a game server port after > hours. > All I have to do is open up port 28960 for him and he should be able to do > it. > Any comments about this? I'm not sure if I want to do this, if it's safe or > not. But also I'm curious if there is any other things I can expect by > opening up that port? Wondering if that's a port hackers like to use also. > I have all ports closed but the ones I need, I think it's less than 5 I have > open.
Nah, I wouldn't go that far unless you really hate the place. I would ask for a document from the boss and I would put on it the security risks associated with opening that port and have the boss sign off on it and if anything happens that document becomes a get out of jail free card. My philosophy is CYA at all times.
my .02
"Kevin Weilbacher" <kweilbac...@gte.net> wrote in message
> Worst case ... let's assume it's the boos who wants to do the gaming. I > would tell the boss the choices are: > 1) find someone to replace me because I quit > 2) see choice #1
> -- > Kevin Weilbacher [SBS-MVP] > "The days pass by so quickly now, the nights are seldom long"
> > We are a small office here, less than 25 workstations. We're running > > SBS2000, using Exchange and SQL Server for office applications. Our > normal > > operating hours are from 8am-5pm. > > An employee wants to use our server, somehow as a game server port after > > hours. > > All I have to do is open up port 28960 for him and he should be able to do > > it. > > Any comments about this? I'm not sure if I want to do this, if it's safe > or > > not. But also I'm curious if there is any other things I can expect by > > opening up that port? Wondering if that's a port hackers like to use also. > > I have all ports closed but the ones I need, I think it's less than 5 I > have > > open.
THANK YOU EVERYONE! Thanks for all your comments. THIS IS WHAT I WANTED!!! I WANTED REPLIES!!! I wanted more valid reasons for why this is NOT a good idea. I'm not the one wanting to run the games, it's an employee here that loves playing games. I couldn't just tell him no because he is computer literate, and I had a feeling it would be unsafe...I just needed more reasons to give than just NO.
All of the answers are important and it will help me when I inform the employee why we cannot open that port for gaming.
I'm serious about this. Just the way some of you'll had the wording was kind of funny! (smile)
For the record. I will not open that port for gaming or another port for gaming for the employee. I spend approx. 8 hours a day looking at a computer screen, and when I leave work, a computer screen is the last thing I want to look at. I'm not a gamer!! Holla if you hear me!!
Have a blessed day!
Thanks again for the responses..they are true and they're GRRRRRRRREAT!!
> I truly was NOT being funny. Sounds like YOU are the one wanting to open a > port for gaming. Hey...it's your career. Have at it, but I would not expect > any support in here for doing it and if you were one of my employees you'd > be fired for even thinking about doing it.
> > We are a small office here, less than 25 workstations. We're running > > SBS2000, using Exchange and SQL Server for office applications. Our > normal > > operating hours are from 8am-5pm. > > An employee wants to use our server, somehow as a game server port after > > hours. > > All I have to do is open up port 28960 for him and he should be able to do > > it. > > Any comments about this? I'm not sure if I want to do this, if it's safe > or > > not. But also I'm curious if there is any other things I can expect by > > opening up that port? Wondering if that's a port hackers like to use also. > > I have all ports closed but the ones I need, I think it's less than 5 I > have > > open.
