Skype and open ports security risk.

I'm not sure whether this applies only to Windows Firewall, which I'm using, or any firewall.

Recently did a firewall test at HackerWatch.

With the open ports scan, managed a full stealth rating.

Did the same test 10 minutes ago with Skype active, but minimized, waiting for my son to come on line, something we do very regularly.

HackerWatch port scan showed ports 80 and 443 as red. In other words, open to the world and awaiting connections. :o

It appears that by default Skype uses port 13023 for incoming connections, but opens ports 80 and 443 as alternatives.

SkypeSecurityRisk.jpg.xs.jpg

I've stuck this screen shot in as it seems the easiest way to show where this checkbox is, and as you can see, unchecking this option gives full stealth again in HackerWatch portscan test.

A lot of you guys who use Skype may already be aware of this, but if not, I'd check your prefs.

Can any of you knowledgeable guys tell me if that is as bad a security risk as it appears?

At the moment I'm listening to Pink Floyd > The Wall > Disc 2 > Track 2....

"Is There Anybody Out There?"

Is there? Using Skype? 1%20(11).gif

If you're still using Windows Firewall "perhaps" I don't know for sure - "you may be able to close some ports" by ticking: Don't allow exceptions

winfwexcept.png.xs.jpg

Then again you may also need to use Windows Worms Doors Cleaner which disables some exploitable ports, but not necessarily those you listed.

If that doesn't work you'll need a third party free firewall that's configurable such as PC Tools Firewall Plus, or Sygate Personal Firewall as both can block specific ports.

Thanks for the reply Andavari, but I solved the problem by unchecking the alternative ports checkbox in prefs, as mentioned in my post. :rolleyes:

I just wanted to find out if this was as bad a risk as it appears, and if it is, to pass on the info.

But it seemed as if I was the only Skype user on the planet.