O-kay.. I'm a dinosaur!

WinXP is still new to me on many levels.

I am setting up a new server for a peer to peer netwrok in our very small office.

The Server is our first WinXP machine.. (XP Pro service pack2) ...all others run Win98.

Thus far I have no issues with connection (I think)

I'm trying to do a few things.

1. How do I remove the "share files and printers" binding from the TCP protocol?

2. How do I insist on a password for a shared drive or folder?

I can't figure either of these. In Win98 this was all damn simple.

Thanks.

O-kay.. I'm a dinosaur!

WinXP is still new to me on many levels.

I am setting up a new server for a peer to peer netwrok in our very small office.

The Server is our first WinXP machine.. (XP Pro service pack2) ...all others run Win98.

Thus far I have no issues with connection (I think)

I'm trying to do a few things.

1. How do I remove the "share files and printers" binding from the TCP protocol?

Do you mean from the adapter? Shouldn't show up as a part of TCP/IP properties sheet at all, but as its own entry. If you're setting the machine up as a server, why would you want to remove file & printer sharing? Highlight it and click "Uninstall".

2. How do I insist on a password for a shared drive or folder?

I can't figure either of these. In Win98 this was all darn simple.

Thanks.

To restrict access, go to (I'm assuming "Classic View") Control Panel | Administrative Tools " | Local Security Settings | User Rights Assignment.
The first key here is "Access this computer from the network". Open this (double click). Then "Add user or group", type in "Authenticated Users" for "Enter the object names . . . ", click "Check Names" and when it gets an underline, click "OK". Then highlight "Everyone" and click "Remove". Then "Yes" and "OK" your way out. Now only users with accounts (and matching passwords) on the "server" will be able to mount folders, and you'll have a "Security" tab for each folder allowing you to restrict folders to specific users, like you used to see in Win98.

Thanks for asking - I hadn't realized they'd changed security quite so much for shares until I had to work through it.

Jon,

thanks so much for your help.

RE; the first question.. I don't want to remove "File and printer sharing" alltogether.

The current peer to peer network I have set up at work is all win98 and the "File and printer sharing" is ONLY available over IPX... by turning off file sharing over TCP I (think) that we totally illiminate any chance of a security issue with our files from the internet.

In Win98 this was simple.. by clicking on "bindings" for each protocol.

It has been a simple trick I use... seems effective.

If I can't do this with WinXP.. at least I'll have the passwords enabled now!!!


And of course.. it's "Classic view" :wink:

The current peer to peer network I have set up at work is all win98 and the "File and printer sharing" is ONLY available over IPX... by turning off file sharing over TCP I (think) that we totally illiminate any chance of a security issue with our files from the internet.

In Win98 this was simple.. by clicking on "bindings" for each protocol.

It has been a simple trick I use... seems effective.

If I can't do this with WinXP.. at least I'll have the passwords enabled now!!!


What you need to do to block File & Printer Sharing from the outside only is set your firewall to block ports 135, 137, 138, 139, 445. If you go to Windows Firewall, Exceptions, you'll see a list of the (stock and those you've added) exceptions. Choose any one, and then "Edit". You can either disallow specific ports or change the scope from "Any computer" to "Local Subnet", or a custom list. You can also see which ports the particular service will use/block, for transfer to the network firewall.

You can always add IPX/SPX to the adapter and then (WINS tab) disable NetBIOS over IP from TCP/IP, but I think blocking those ports at your network firewall and allowing them only from the local subnet on the XP box (none of the W98 boxes are offering shares, right?) should be enough..

windows 98 is not domain aware. You should use startup scripts to configure exactly what you want.

Jon, thanlks again for the tips.. this sounds like the way to go. In the long run.. maintaining sharing over TCP will be benificial.. whe we start to add more use of wireless (with plenty of encrytion!)

Transfix,
I appreciate the help :) .. but I haven't the foggiest idea what it means! ??? :lol: