Network Security Question

Hello all.

I have upgraded my NT 4.0 system and I’m now running Windows 2000
Professional. I have disabled workstation, server and net logon services.
My machine still talks to the internet ok and my memory footprint
is now under 50Mb.

What is the absolute minimum requirement for server (RPC in particular)
services in order for WinNT and Windows 2000 to be able to use the Internet
(email, web browsing and nslookup services)?

Are there any other services that, if running, constitute possible security
holes through which my machine could be manipulated via the internet
connection?

Thanks.

> Are there any other services that, if running, constitute possible
security

holes through which my machine could be manipulated via the internet
connection?

NtBugTraq archives will be OK for you.
IIRC the main source of security holes are IIS additional components -
FrontPage extensions, Index Server etc.

Max