Comcast customerCentral

Port

Transport

Protocol

Inbound/ Outbound

Reason for block

Blocked by Default?

25

TCP

SMTP

Both

Port 25 is an unsecured port on a computer that those sending spam can take control of to send spam - often without the user ever knowing his/her computer has been compromised.  When spam from a compromised computer is detected, Comcast’s anti-spam systems automatically apply a sending block and send an email notification to the affected subscriber’s comcast.net email address. This block does not interrupt mail service for Webmail (e.g. Comcast, Yahoo, Gmail, or Hotmail); however, this block does prevent email programs or clients (e.g. Outlook Express) from sending email.  Client e-mail programs will still receive email.  The instructions at our mail client help page explain how to configure common email client programs to use Port 587, which includes authentication, instead of Port 25.

No

68

UDP

BOOTP, DHCP

Inbound

UDP Port 68 is used by customer computers to obtain dynamic Internet Protocol (IP) address information from the Comcast’s dynamic host configuration protocol (DHCP) server that assigns IP addresses to customer computers. DHCP ports can be used for malicious attacks such as, for example, obtaining access to a customer’s home computer or home network and its devices

Yes

135-139

TCP/UDP

NetBios

Both

NetBios services allow file sharing over networks. When improperly configured, they can expose critical system files or give full file system access (run, delete, copy) to any malicious intruder connected to the network.

Yes

445

TCP

MS-DS, SMB

Both

Security risks; vulnerable to attacks/exploits/worms such as the Sasser and Nimda worms..

Yes

520

TCP/UDP

RIP

Both

Vulnerable to malicious route updates which provides several attack possibilities.

Yes

1080

TCP

SOCKS

Inbound

Multiple vulnerabilities (Viruses, Worms, DoS attacks).

Yes