RE: Null session and Exchange2K

From: Evans, TJ (tjevans@kpmg.com)
Date: 06/20/02 

From: "Evans, TJ" <tjevans@kpmg.com>
To: Jet Chan <jchan@trusecure.com>, focus-ms@securityfocus.com
Date: Thu, 20 Jun 2002 14:39:10 -0400

Would you really consider placing your email server on the internet without
a firewall?? Or atleast, a filtering router blocking all TCP+UDP 135-139??
<I know - you don't need to block the whole range, but much easier to type
:)>

... think VPN.

Thanks!
TJ

-----Original Message-----
From: Jet Chan [mailto:yenjet.chan@eglobal.com.my]
Sent: Thursday, June 20, 2002 6:39 AM
To: focus-ms@securityfocus.com
Subject: Null session and Exchange2K

*** PGP Signature Status: unknown
*** Signer: Unknown, Key ID = 0x98D83D41
*** Signed: 6/20/2002 6:38:39 AM
*** Verified: 6/20/2002 2:36:31 PM
*** BEGIN PGP VERIFIED MESSAGE ***

Greeting,

I wonder how many people got this error.
In the kb below, MS said Exchange2K cannot have
restrictanonymous=0x2,
otherwise it will blocks users from browsing the Global Address List.

http://support.microsoft.com/default.aspx?scid=kb;en-us;Q309622

So, is that means, an Exchange 2000 server cannot install SRP1 and
having restrictanonymous=0x2 ???
In this case, an Exchange 2000 server might vulnerable to Null
Session enumeration.
So is the only solution now is protect the server with firewall ?

regards,
.//Jet

*** END PGP VERIFIED MESSAGE ***

*****************************************************************************
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized.

If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.
*****************************************************************************

Relevant Pages

  • Nicht löschbare Mails/Aufgabe
    ... Ich habe einen alten Win2000Svr mit Exchange2k weiterhin ... Da der Server voll am Ende is, ... postfächer verschoben. ... nach der Replication der Öffendlichen Ordner und dem ...
    (microsoft.public.de.exchange)
  • Exchange2K Online Backup w/NTBackup?
    ... and have inherited admining a Win2K server with Exchange2K. ... and use the included NTbackup. ... get a usable backup of the message store, Exchange had to be shut down ...
    (microsoft.public.exchange2000.admin)
  • Re: Why is there a queue for an old Exchange server?
    ... MCSE | M+, S+, MCTS, Security+ ... specified in the migration guide and my 2K3 server took over. ... the other day I did look at them and saw that there are two queues ... sitting out there, one called EXCHANGE2K, the other called ...
    (microsoft.public.exchange.admin)
  • Re: import priv pub
    ... Regular old Exchange2k? ... John Smith wrote: ... > I need to import to a sbs2k3 server the priv and pub from another ... > I have all the parts from the old exchange folder machine ...
    (microsoft.public.exchange2000.information.store)
  • Re: CEICW fails at firewall config
    ... Do you or do you not have ISA 2000 or ISA 2004 installed on the SBS server? ... Do you have 2 NICs in the SBS? ... CEICW fails on firewall configuration every time. ... >>> Call to Creating the protected networks access rule returned ok. ...
    (microsoft.public.windows.server.sbs)