DCOM/RPC issues FAQ now available
From: Russ (Russ.Cooper_at_RC.ON.CA)
Date: 09/11/03
- Previous message: James Foster: "Re: Alert: Microsoft Security Bulletin - MS03-039"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 11 Sep 2003 13:58:04 -0400 To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
I've tried to put together all that I could think relevant to the DCOM/RPC discussions into a single FAQ so we can avoid discussing things again this time.
http://www.ntbugtraq.com/dcomrpc.asp
It includes;
Disabling DCOM
- Disabling DCOM on Windows 2000 pre-SP3
- Additional steps for disabling DCOM on Windows Server 2003
- Microsoft's warning about disabling DCOM
- List of known applications requiring DCOM or problematic with DCOM disabled
Windows 95/98/ME and DCOM
Problems with Clusters
Windows 2000 SP4 not listed as a "Supported Operating System"
Machines with MS03-039 applied appear to require MS03-026
Reports of vulnerabilities over port 80, 443, or 593
- Use of Port 593 - RPC over HTTP End Point Mapper
- Use of Port 80/443 - RPC over HTTP or the DCOM "Tunneling TCP/IP" protocol
Comments and/or suggestions are solicited on the page, please use the email link there.
Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor
---- Are You "Certifiable"? Summer's Hottest Certification Just Got HOTTER! With a growth rate exceeding 110%, the TICSA security practitioner certification is one of the hottest IT credentials available. And now, for a limited time, you can save 33% off of the TICSA certification exam! To learn more about the TICSA certification, and to register as a TICSA candidate online, just go to http://www.trusecure.com/offer/s0100/ ----
- Previous message: James Foster: "Re: Alert: Microsoft Security Bulletin - MS03-039"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
