RE: ISA newbie with remote administration questions
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 7 Apr 2005 20:40:24 -0500
mee2
Tom
www.isaserver.org/shinder
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
-----Original Message-----
From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx]
Sent: Thursday, April 07, 2005 8:33 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: ISA newbie with remote administration questions
http://www.ISAserver.org
..and me.
Bear in mind that every networking application you add to (and make
available from) your firewall increases the attack surface.
HTTP applications have proven (regardless of author) to be the best
attractor of 'Net meanies.
Get rid of that applet-like toy...
-----Original Message-----
From: Steve Moffat [mailto:steve@xxxxxxxxxx]
Sent: Thursday, April 07, 2005 4:30 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: ISA newbie with remote administration questions
http://www.ISAserver.org
And me
S
-----Original Message-----
From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx]
Sent: Thursday, April 07, 2005 7:50 PM
To: ISA Mailing List
Subject: [isalist] RE: ISA newbie with remote administration questions
http://www.ISAserver.org
While it may expand your knowledge, it will decrease your security...
RDP is more secure, and easier to control as a separate protocol/port
than
bundling difference services within a single protocol like HTTP. You
also
won't have to screw around with combined filters/rules (you said Win2k,
but did not specify ISA2k, but I'm assuming that is what you meant) or
proxy settings.
So while this does not specifically answer your question, it does give
you a better, faster, more secure alternative. Personally, I would
never even consider putting GMPC on my ISA server for remote admin when
TS is a far better way to go- but that's me.
t
------
*Secure your infrastructure*
Microsoft Ninjitsu: Securely Deploying MS Technologies security training
delivered by Timothy Mullen.
Registration now open for Blackhat Seattle 2005:
http://www.blackhat.com/html/training-seattle-05/train-bh-sea-05-tm.html
----- Original Message -----
From: "Jeffry Nimeroff" <jeffry.nimeroff@xxxxxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, April 07, 2005 3:16 PM
Subject: [isalist] RE: ISA newbie with remote administration questions
> http://www.ISAserver.org
>
> Personal choice. I am not a big fan of Remote Desktop.
>
> Also, I always like to participate in exercises that expand my
knowledge,
> and figuring out why the ISA box itself doesn't have the same
privileges
> (in terms of outbound connectivity) as the other boxes behind it is
just
> such an exercise. I have already test installed GMPC on two other
> machines at my client.
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com
> Leading Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org
> Windows Security Resource Site: http://www.windowsecurity.com/
> Network Security Library: http://www.secinf.net/
> Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> thor@xxxxxxxxxxxxxxx
> To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
isalist@xxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
The haggis is unusual in that it is neither consistently nocturnal nor
diurnal, but instead is active at dawn and dusk (crepuscular), with
occasional forays forth during the day and night.
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
All mail to and from this domain is GFI-scanned.
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
Other related posts:
