Re: [fw-wiz] RPCs over HTTPS through the firewall

• Previous message: C. Worms: "RE: [fw-wiz] Sonicwall hangs - familiar?"
• In reply to: david singleton: "[fw-wiz] RPCs over HTTPS through the firewall"
• Next in thread: Ben Nagy: "RE: [fw-wiz] RPCs over HTTPS through the firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Volker Tanger" <volker.tanger@discon.de>
To: "david singleton" <david_rh_singleton@hotmail.com>
Date: Tue, 22 Apr 2003 09:48:54 +0200

Greetings!

On Mon, 21 Apr 2003 12:17:32 -0500 "david singleton"
<david_rh_singleton@hotmail.com> wrote:

> Microsoft's Outlook 11 can envelope its RPC traffic in HTTPS and
> thereby go through the firewall on port 443 to connect to the Exchange
> server.
> Is this thought to be anymore risky than conventional port 443
> traffic?

If I understand the "wrapping" correctly, the advantages are mainly on
the client side: works from behind NAT(masq), no open ports for
RFC-Backconnects on the client (i.e. you probably can close them).

Or did you think of OWA, which (by definition) works via HTTP(S)?

Bye

Volker Tanger

IT-Security
discon gmbh
DeTeWe AG & Co. KG

Fon +49 30 6104-3307
Fax +49 30 6104-3435
http://www.detewe.de/

-- 
-------------------------------------------------------------------
Besuchen Sie unsere neuen Internet-Seiten http://www.detewe.de .
Neues Highlight: Wunschproduktberater fuer den Home & Office-Bereich.
Visit our new Internet Pages on http://www.detewe.de .
Our Highlight: Online Product Adviser for Home & Office.
(Currently available in German only)
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Previous message: C. Worms: "RE: [fw-wiz] Sonicwall hangs - familiar?"
• In reply to: david singleton: "[fw-wiz] RPCs over HTTPS through the firewall"
• Next in thread: Ben Nagy: "RE: [fw-wiz] RPCs over HTTPS through the firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: keeping ports open ... If a port is open, it means that 1) a software or service is running on your ... and 2) you're not using a firewall or your firewall isn't ... Use firewall software and hardware and antivirus software that is ... Follow the instructions for hardening Windows and IIS at ... (microsoft.public.security) Re: How to Maintain an IIS Server? ... > server running on a Windows 2000 server. ... before a firewall and antivirus have been installed]. ... open ports; however, this will not identify which program is using the port. ... (microsoft.public.inetserver.iis.security) Re: CEICW fails at firewall config ... ISA Server prevents connection to a remote desktop when you connect through ... Remote Web Workplace on a Windows Small Business Server 2003-based computer ... Acceleration Server as a firewall. ... connection uses TCP port 4125. ... (microsoft.public.windows.server.sbs) Re: How to Maintain an IIS Server? ... >> server running on a Windows 2000 server. ... > before a firewall and antivirus have been installed]. ... > program or executable using that port. ... (microsoft.public.inetserver.iis.security) Re: Is secedit.exe left by a hacker? ... > tested on port 445. ... > I have a Linksys router that I use as a firewall to my ... Secedit.exe is the name of a legitimate Windows file, ... investigate the files on your computer - antivirus with the latest updates ... (microsoft.public.win2000.security)