RE: ISA 2K on Win 2K, Publishing Exchange RPC in back-to-back network

• From: "Ranjit Kapila" <ranjit@xxxxxxxxxxx>
• To: isalist@xxxxxxxxxxxxx
• Date: Thu, 24 Jun 2004 15:18:13 -0600

Hi Tom,

Thanks for the rapid response.
Could you elaborate on how enabling the Server Service increases the
attack surface of the bastion host?  (you may respond to my email,
ranjit@xxxxxxxxxxx, if you prefer).

I'm guessing that it opens up RPC on the external interface more than the
Exchange RPC filter does.  Do you think the registry could be modified to
prevent this (e.g. limiting RPC access on the external interface)?


I'd also like to extend my thanks to you and prolific posters like Jim
Harrison (no offense to any other unmentioned helpful poster) on
increasing transparency on these relatively opaque Microsoft products. 
Ya'll  really help us workhorse implementers meet the demands of
Management (a strange preference for M$ over open-source solutions).
Thank You.

Peace.
Ranjit

Other related posts:

• » ISA 2K on Win 2K, Publishing Exchange RPC in back-to-back network
• » RE: ISA 2K on Win 2K, Publishing Exchange RPC in back-to-back network
• » RE: ISA 2K on Win 2K, Publishing Exchange RPC in back-to-back network

1. Home
2. isalist
3. Archive
4. 06-2004

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---