RE: READ NOW:: terminal services over https
- From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 15 Dec 2005 12:57:10 -0800
SBS has a component they built to act as an RDP proxy.
The *do not* tunnel RDP through HTTP.
RWW is little more than a "duded-up" TSWEB page that can also modify ISA
policies to allow TCP:4141 (not the default RDP port) for the connected client.
-------------------------------------------------------
Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://isaserver.org/Jim_Harrison/
http://isatools.org
Read the help / books / articles!
-------------------------------------------------------
-----Original Message-----
From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx]
Sent: Thursday, December 15, 2005 12:12
To: [ISAserver.org Discussion List]
Subject: [isalist] READ NOW:: terminal services over https
http://www.ISAserver.org
Thor / Tom:
Nice input - and thanks for the article/link.
But then how does SBS do it via the RWW dashboard? I don't have RDP/3389
opened/forwarded on my firewall.
Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc.
49 Marcy Street
Somerset, NJ 08873
(732) 213-0600
www.NetworkBlade.Com
-----Original Message-----
From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx]
Sent: Thursday, December 15, 2005 1:31 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: READ NOW:: terminal services over https
http://www.ISAserver.org
I don't know about that place, man... The last time I was in a Denny's, the
waitress I had walked with a cane. A CANE! I swear! She had to make
something like 9 trips just for my breakfast and some coffee. I was like, "I'm
not believing this." Stuff was flopping around on the plate 'cause the one
hand she had to carry everything with was shaking all over the place.
The sausage ended up all jacked up in my grits, and the eggs were flung over
the entire plate like driveway sealant. The hash browns were hanging half off
the side-plate like a watch in a Salvador Dali painting. She was like, "can I
get you anything else?" and I'm like, "Yeah, a Waffle House!!"
t
-----
"I may disapprove of what you say,
but I will defend to the death your
right to say it."
----- Original Message -----
From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, December 15, 2005 8:20 AM
Subject: [isalist] Re: READ NOW:: terminal services over https
http://www.ISAserver.org
Denny's baby.
I'll never forget being asked to leave because my buddy and I (trashed
though we were, like good little sailor-boys) were asked to leave
because we
couldn't stop making rude comments about the "butt-steak" on the menu
and
our cute waitress's butt.
..ahh, the good old days...
-------------------------------------------------------
Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://isaserver.org/Jim_Harrison/
http://isatools.org
Read the help / books / articles!
-------------------------------------------------------
-----Original Message-----
From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx]
Sent: Wednesday, December 14, 2005 17:57
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: READ NOW:: terminal services over https
http://www.ISAserver.org
Yeah, I miss Waffle House. I'm sure I would have had many a good memory
of
that place if I, um, if I could, um, only... remember. Yeah, that's it.
It's too bad that the only places that I can't remember over here on the
left-coast are Denny's and whatever that other place is.
t
-----
"God is a comedian playing to an
audience too afraid to laugh."
----- Original Message -----
From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Wednesday, December 14, 2005 5:20 PM
Subject: [isalist] Re: READ NOW:: terminal services over https
http://www.ISAserver.org
Ha! Waffle House -- the place to go after a bender.
Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://spaces.msn.com/members/drisa/
Book: http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
> -----Original Message-----
> From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx]
> Sent: Wednesday, December 14, 2005 7:08 PM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] Re: READ NOW:: terminal services over https
>
> http://www.ISAserver.org
>
> That's what I like about your articles, Tom... They're just
> like a Waffle
> House menu!
>
> t
>
> -----
> "God is a comedian playing to an
> audience too afraid to laugh."
>
>
> ----- Original Message -----
> From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
> Sent: Wednesday, December 14, 2005 4:41 PM
> Subject: [isalist] READ NOW:: terminal services over https
>
>
> http://www.ISAserver.org
>
> Hi Dan,
>
> Read this NOW:
> http://www.msfirewall.org/isa2004/2004pubremotewebconnp1/2004p
> ublishremo
> tewebconnection-1.htm
>
> It has pictures and everything and is meant to dispel the
> myth of MS RDP
> over HTTP.
>
>
> Its my small attempt to educate people about how RDP and the TSAC Web
> site work and how it doesn't work.
>
> Tom
>
> Thomas W Shinder, M.D.
> Site: www.isaserver.org
> Blog: http://spaces.msn.com/members/drisa/
> <http://spaces.msn.com/members/drisa/>
> Book: http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7>
> MVP -- ISA Firewalls
> **Who is John Galt?**
>
>
>
> > -----Original Message-----
> > From: Dan Bartley [mailto:dan@xxxxxxxxxxxxxxx
> <mailto:dan@xxxxxxxxxxxxxxx> ]
> > Sent: Wednesday, December 14, 2005 5:45 AM
> > To: [ISAserver.org Discussion List]
> > Subject: [isalist] RE: terminal services over https
> >
> > http://www.ISAserver.org <http://www.ISAserver.org>
> >
> > Could it not be done over a web enabled terminal services?
> > Set up a server
> > for web enabled TS, then make that SSL only? Not sure if that
> > would work
> > because of the name requirements to use it (DNS might
> prevent it from
> > working?). Think I'll see if it can be a published web site,
> > curiosity.
> >
> >
> > Best Regards,
> >
> > Dan Bartley
> >
> > -----Original Message-----
> > From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx
> <mailto:ara.avvali@xxxxxxxxxxxxx> ]
> > Sent: Wednesday, December 14, 2005 01:14
> > To: [ISAserver.org Discussion List]
> > Subject: [isalist] RE: terminal services over https
> >
> > http://www.ISAserver.org <http://www.ISAserver.org>
> >
> > Haha
> > Jim 25/8 :) I knew you answer in 5 minutes!
> > Man how come you are always here? I guess you are using a portable
> > device like blackberry.
> >
> > Anyway, may I ask why?
> >
> >
> > -----Original Message-----
> > From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx
> <mailto:Jim@xxxxxxxxxxxx>
> ]
> > Sent: Tuesday, December 13, 2005 10:06 PM
> > To: [ISAserver.org Discussion List]
> > Subject: [isalist] RE: terminal services over https
> >
> > http://www.ISAserver.org <http://www.ISAserver.org>
> >
> > You can't do it.
> > Now - wasn't that easy?
> >
> > --------------------------------------------
> > Jim Harrison
> > MCP(NT4, W2K), A+, Network+, PCG
> > http://isaserver.org/Jim_Harrison/
> <http://isaserver.org/Jim_Harrison/>
> > http://isatools.org <http://isatools.org>
> > Read the help / books / articles!
> > --------------------------------------------
> > -----Original Message-----
> > From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx
> <mailto:ara.avvali@xxxxxxxxxxxxx> ]
> > Sent: Tuesday, December 13, 2005 10:04 PM
> > To: [ISAserver.org Discussion List]
> > Subject: [isalist] terminal services over https
> >
> > http://www.ISAserver.org <http://www.ISAserver.org>
> >
> > Good evening,
> > This idea is spinning in my head of publishing a terminal
> server using
> > https instead of remote desktop. Main reason I think I can
> only allow
> > remote terminal from machines that I install the
> certificate manually
> > (maybe I am wrong) also I think authentication happens in ISA
> > instead of
> > backend server (Like OWA) so if client is not is legitimate
> user they
> > won't be hammering the back end server and won't pass through
> > ISA before
> > proper user name and password is used.
> > Would someone clear this for me please?
> > Appreciated
> >
> >
> > ------------------------------------------------------
> > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> <http://www.isaserver.org/pages/newsletter.asp>
> > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> <http://www.isaserver.org/pages/larticle.asp?type=FAQ>
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com <http://www.techgenix.com>
> > ------------------------------------------------------
> > You are currently subscribed to this ISAserver.org
> Discussion List as:
> > jim@xxxxxxxxxxxx
> > To unsubscribe visit
> > http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> > All mail to and from this domain is GFI-scanned.
> >
> >
> > ------------------------------------------------------
> > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> <http://www.isaserver.org/pages/newsletter.asp>
> > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> <http://www.isaserver.org/pages/larticle.asp?type=FAQ>
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com <http://www.techgenix.com>
> > ------------------------------------------------------
> > You are currently subscribed to this ISAserver.org
> Discussion List as:
> > ara.avvali@xxxxxxxxxxxxx
> > To unsubscribe visit
> > http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> > ------------------------------------------------------
> > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> <http://www.isaserver.org/pages/newsletter.asp>
> > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> <http://www.isaserver.org/pages/larticle.asp?type=FAQ>
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com <http://www.techgenix.com>
> > ------------------------------------------------------
> > You are currently subscribed to this ISAserver.org
> Discussion List as:
> > dan@xxxxxxxxxxxxxxx
> > To unsubscribe visit
> > http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> >
> > This email and its contents are intended as a private communication
> > between the sender and specified recipient(s). Any other use,
> > re-transmission, interception or alteration is prohibited by
> > applicable
> > laws and will result in criminal and civil liability.
> >
> > ------------------------------------------------------
> > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> <http://www.isaserver.org/pages/newsletter.asp>
> > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> <http://www.isaserver.org/pages/larticle.asp?type=FAQ>
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com <http://www.techgenix.com>
> > ------------------------------------------------------
> > You are currently subscribed to this ISAserver.org Discussion
> > List as: tshinder@xxxxxxxxxxxxxxxxxx
> > To unsubscribe visit
> > http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> >
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> <http://www.isaserver.org/pages/newsletter.asp>
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> <http://www.isaserver.org/pages/larticle.asp?type=FAQ>
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com <http://www.techgenix.com>
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> tshinder@xxxxxxxxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> <http://www.webelists.com/cgi/lyris.pl?enter=isalist>
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
>
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion
> List as:
> thor@xxxxxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion
> List as: tshinder@xxxxxxxxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
thor@xxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
All mail to and from this domain is GFI-scanned.
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
thor@xxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jdanielsen@xxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
All mail to and from this domain is GFI-scanned.
Other related posts:
