|reply to The_Merovingian |
Re: OS X UDP Port 137, 138, 139 Kill
said by The_Merovingian:
To Disable Ports 137, 138, and 139 in Mac OS X, turn off passive FTP (system prefs/network/proxies/the box labeled Use Passive FTP Mode... You would have personally turned it on when you enabled the firewall) if you are behind OS X's built in firewall. You will not be able to download from FTP sites, but you will have 3 less UDP ports open. This one is for the exceptionally paranoid.
for reference, i just disabled passive ftp, ran tests to make sure my UDP ports all showed filtered (they do), and then tried to connect to a couple of ftp sites and succeeded, no problems. so disabling passive ftp does not necessarily render one unable to connect to all ftp sites. some of them, perhaps...but i haven't encountered any like that yet.