Exchange Server Forums

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

RPC connection

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Microsoft Exchange 2003] >> Server Security >> RPC connection Page: [1]
Login
Message << Older Topic   Newer Topic >>
Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
RPC connection - 21.Aug.2003 9:01:00 AM   
ruwand

 

Posts: 41
Joined: 11.Oct.2002
From: Sri Lanka
Status: offline 		hi,

Does any one familier with RPC over HTTP security ?

Cheers ! "[Smile]"
Post #: 1
RE: RPC connection - 21.Aug.2003 9:57:00 PM   
Henrik Walther

 

Posts: 6835
Joined: 21.Nov.2002
From: Copenhagen, Denmark
Status: offline 		Hello Rat Master,

You can configure the setup so that RPC uses HTTPS instead of HTTP, which is absolutely recommended.

Regards

(in reply to ruwand)
Post #: 2
RE: RPC connection - 26.Aug.2003 11:26:00 AM   
ruwand

 

Posts: 41
Joined: 11.Oct.2002
From: Sri Lanka
Status: offline 		ok thanks,

But viruses like msblast attacks the RPC ports. RPC vunerability for hackers to explore was there in the earlier versions of Windows. Are you saying it is coverd and protected in the new version ?

Cheers !

(in reply to ruwand)
Post #: 3
RE: RPC connection - 26.Aug.2003 12:15:00 PM   
Henrik Walther

 

Posts: 6835
Joined: 21.Nov.2002
From: Copenhagen, Denmark
Status: offline 		Hello again,

Yes it's safe, as RPC runs over the HTTP/HTTPS protocols.

All RPC packets are wrapped with HTTP/HTTPS headers, so that it can travel along the internet as HTTP/HTTPS traffic.

Above means you don't have to open the RPC ports in your firewall, only port 80 (HTTP) or 443 (HTTPS) needs to be opened in the firewall...

(in reply to ruwand)
Post #: 4
RE: RPC connection - 11.Sep.2003 2:58:00 AM   
tshinder

 

Posts: 100
Joined: 9.Jul.2002
From: USA
Status: offline 		Hi Henrik,

True, but they will figure out how to tunnel the RPC exploits through the HTTP tunnel. That is why secure Exchange RPC Publishing is the ONLY truly secure remote access to method to connect to Exchange. Its the "killer app" of ISA Server.

HTH,
Tom

(in reply to ruwand)
Post #: 5
RE: RPC connection - 11.Sep.2003 8:00:00 AM   
Henrik Walther

 

Posts: 6835
Joined: 21.Nov.2002
From: Copenhagen, Denmark
Status: offline 		Hello Tom,

Hmm I really must get going with my ISA Server project [Wink]

Where would I be able to find a copy of your ISA books to the lowest price ? [Big Grin]

Regards

(in reply to ruwand)
Post #: 6
RE: RPC connection - 12.Sep.2003 12:30:00 AM   
tshinder

 

Posts: 100
Joined: 9.Jul.2002
From: USA
Status: offline 		Hi Henrik,

Try out www.bookpool.com, they usually have the best prices [Smile]

Thanks!
Tom

(in reply to ruwand)
Post #: 7
RE: RPC connection - 19.Sep.2003 5:43:00 AM   
pela

 

Posts: 13
Joined: 19.Sep.2003
From: Denmark
Status: offline 		Well, you can force authentication on RPC over HTTP, and RPC publicing on ISA only opens the UUID's in RPC you need. There's pro and cons for both...

Peter Larsen

(in reply to ruwand)
Post #: 8

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Microsoft Exchange 2003] >> Server Security >> RPC connection Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts