Operating System Networking
To determine that the network and network services are protected against unauthorized access and use:
1. Identify all necessary Net BIOS services offered on each server. Access the propriety of each and if it is running as a non-privileged service
account, unless the service requires the system account.
2. Review router configurations for routers that connect the operating system network to external networks. Ensure that the TCP/UDP ports 137, 138
and 139 are blocked or altered to restrict Net BIOS traffic coming into and going out of the network.
3. Identify all active, native, and third-party TCP/IP network services active on the operating system server. Audit the security of each service.