RE: Outlook !!

Hi Steve,

Good points regarding RDP, but you can DoS virtually any account if
domain policy is configured to lock the account out after X number of
tries. You can do the same thing with VPN servers. Might it be better to
not use account lockout, and then just 30+ character passwords? That's
what I prefer to do, and its not that hard to comes up with passwords
that long if you use the right mnemonics.

What's Dave Baird and why does he want to hurt ISA Server's feelings?
:-)

Thanks!
Tom

Thomas W Shinder
www.isaserver.org/shinder 
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp

 


-----Original Message-----
From: Steve Moffat [mailto:steve@xxxxxxxxxxxxxxx] 
Sent: Thursday, April 10, 2003 11:08 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Outlook !!


http://www.ISAserver.org


Francisco

I recommend that you now request a new IP address from your ISP unless
you start your firewall sevices. I have just RDP'd to your server, which
is in the souzacosta domain. There are brute force attacks to enable
access through RDP and your server is wide open to everything. This is a
little bit silly, also, letting people know your external IP and your
internal range verges on insanity.

PS Dave Baird (dbaird@xxxxxxxxxx) says ISA is SHITE, flames welcome

Steve




-----Original Message-----
From: Francisco Morais [mailto:francisco@xxxxxxxxxxxxxxxxx] 
Sent: Thursday, April 10, 2003 9:36 AM
To: Isa List

http://www.ISAserver.org


Hi,
My network :

Isa :   Lan - 192.168.37.2
         subnet - 255.255.255.0
         Dns - 192.168.37.2

         Wan - 200.173.218.146
          subnet - 255.255.255.248
          dns -     200.225.83.10

The users in network use smtp.mandic.com.br  and imap.mandic.com.br,
but, when ISA Firewall is started all users receive error messages ....
what can I do ?


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/ Windows
Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT
Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
steve@xxxxxxxxxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')



This E-Mail is confidential. It is not intended to be read, copied,
disclosed or used by any person other than the recipient. 


Unauthorised use, disclosure, or copying is strictly prohibited and may
be unlawful. Optimum Computer Solutions disclaims any liability for any
action taken in connection of this E-Mail. The comments or statements
expressed in this E-Mail are not necessarily those of Optimum Computer
Solutions or its subsidiaries or affiliates.

usermanager@xxxxxxxxxxxxxxx 



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')


Other related posts: