RPC connection (Full Version)

All Forums >> [Microsoft Exchange 2003] >> Server Security



Message

ruwand -> RPC connection (21.Aug.2003 9:01:00 AM)

hi,

Does any one familier with RPC over HTTP security ?

Cheers ! "[Smile]"



Henrik Walther -> RE: RPC connection (21.Aug.2003 9:57:00 PM)

Hello Rat Master,

You can configure the setup so that RPC uses HTTPS instead of HTTP, which is absolutely recommended.

Regards



ruwand -> RE: RPC connection (26.Aug.2003 11:26:00 AM)

ok thanks,

But viruses like msblast attacks the RPC ports. RPC vunerability for hackers to explore was there in the earlier versions of Windows. Are you saying it is coverd and protected in the new version ?

Cheers !



Henrik Walther -> RE: RPC connection (26.Aug.2003 12:15:00 PM)

Hello again,

Yes it's safe, as RPC runs over the HTTP/HTTPS protocols.

All RPC packets are wrapped with HTTP/HTTPS headers, so that it can travel along the internet as HTTP/HTTPS traffic.

Above means you don't have to open the RPC ports in your firewall, only port 80 (HTTP) or 443 (HTTPS) needs to be opened in the firewall...



tshinder -> RE: RPC connection (11.Sep.2003 2:58:00 AM)

Hi Henrik,

True, but they will figure out how to tunnel the RPC exploits through the HTTP tunnel. That is why secure Exchange RPC Publishing is the ONLY truly secure remote access to method to connect to Exchange. Its the "killer app" of ISA Server.

HTH,
Tom



Henrik Walther -> RE: RPC connection (11.Sep.2003 8:00:00 AM)

Hello Tom,

Hmm I really must get going with my ISA Server project [Wink]

Where would I be able to find a copy of your ISA books to the lowest price ? [Big Grin]

Regards



tshinder -> RE: RPC connection (12.Sep.2003 12:30:00 AM)

Hi Henrik,

Try out www.bookpool.com, they usually have the best prices [Smile]

Thanks!
Tom



pela -> RE: RPC connection (19.Sep.2003 5:43:00 AM)

Well, you can force authentication on RPC over HTTP, and RPC publicing on ISA only opens the UUID's in RPC you need. There's pro and cons for both...

Peter Larsen



Page: [1]