RE: Terminal Service Port Change?

  • From: "Ball, Dan" <DBall@xxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Mon, 11 Apr 2005 13:35:39 -0400

He's referring to using it on a "known" port number.  If someone is
going to do a TS/RDP attack, the first place they try is the published
port.  Move it to an unknown port, and you make them have to jump a lot
more hoops to do the attack.

 

Also, keep in mind that not just the External networks need to be
protected...

 

________________________________

From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] 
Sent: Monday, April 11, 2005 11:51
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Terminal Service Port Change?

 

http://www.ISAserver.org

Steve, 

 

If you don't give your users TS access how is it any security issue on
your LAN? If you wanted to get tight you could always require ISA
authentication before allowing the user to RDP into the network. 

 

Andrew

 

 

________________________________

From: Steve Moffat [mailto:steve@xxxxxxxxxx] 
Sent: Monday, April 11, 2005 12:21 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Terminal Service Port Change?

 

http://www.ISAserver.org

Security by obscurity Andrew.

 

S

 

________________________________

From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] 
Sent: Monday, April 11, 2005 12:10 PM
To: ISA Mailing List
Subject: [isalist] RE: Terminal Service Port Change?

http://www.ISAserver.org

Steve, 

 

Why would you bother changing TS or RDP's internal port if you are using
ISA server? All you have to do is tell ISA once you have created the
rule to only accept RDP/TS requests on port number blah. That way people
on the outside have to put rdp.domain.com:Newport when they connect from
the outside. ISA talks to the server internally on 3389. 

 

Andrew

 

 

________________________________

From: SteveC [mailto:stevec@xxxxxxxxxxx] 
Sent: Monday, April 11, 2005 10:58 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Terminal Service Port Change?

 

http://www.ISAserver.org
  ISA 2004/EE on Win2K3.   
   
   Right now Terminal Server port 3389 traffic from the internal LAN
space is   
   allowed. I would like to change my Terminal Server port to a high
(unpublished)   
   port number and make that port available for external and internal
traffic. I   
   know how to make the Registry change to move the port. I don't
understand how   
   to tell ISA 2004 to make the port available - with ISA 2000 I'd play
with   
   Packet Filters, but with 2004 I am kind of lost.  Help?  
   
   Thanks.   ------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
andrew@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
isalist@xxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

 

--
<http://www.atomic9.net/public> http://www.atomic9.net/public

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
andrew@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
dball@xxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

________________________________

The haggis is unusual in that it is neither consistently nocturnal nor
diurnal, but instead is active at dawn and dusk (crepuscular), with
occasional forays forth during the day and night. 

________________________________

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 04-2005