Re: port 443 trying to shut it down when not using ssl

From: BB (Bernard_at_3exp.com)
Date: 01/29/03 

From: "BB" <Bernard_at_3exp.com>
Date: Wed, 29 Jan 2003 17:27:38 +0800

This is very buggy and MS is aware of this.
Some time this will work. if you don't have any ssl cert
Try this
1. open a command prompt
2. Change to the inetpub\adminscripts
3. Run the following command from the command line:
C:\Inetpub\AdminScripts>cscript adsutil.vbs get w3svc/1/SecureBindings
if you got nothing from the return list. then it is remove.

If not, you have to try this:
You can't really stop the binding unless you have a SSL.
One you got the cert installed, go to advanced properties of the sites
and remove the port 443 mapping entry.
Refer this on how to get a cert ..
Using Certificate Server 2.0 to Generate a Server Certificate for Use with
IIS 5.0
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q228984

or alternatively you can alter the port to some xxxx port
cscript adsutil.vbs set w3svc/1/SecureBindings 9999

where 9999 is the port number.

Rgds.

"bob940" <bob940@hotmail.nospam.com> wrote in message
news:eAAAQX3xCHA.2596@TK2MSFTNGP12...
> I need some help tyring to shut down port 443 as I am not using SSL
>
> Here's some info so you can have a better look at whats going
>
> here's the info from languard
>
> CP ports - 3 open ports
> 80 [ Http => World Wide Web, HTTP ]
> HTTP/1.1 200 OK
> Connection: close
> Content-Location: http://***.***.***.***/index.htm
> Date: Tue, 28 Jan 2003 16:39:25 GMT
> Content-Type: text/html
> Accept-Ranges: bytes
> Last-Modified: Mon, 20 Jan 2003 15:49:04 GMT
> ETag: _40a395759bc0c21:98c_
> Content-Length: 5243
>
> 135 [ epmap => DCE endpoint resolution ]
>
> 443 [ HttpS => Secure HTTP ]
>
> and the info from tcp view, which is misleading because it looks like it's
> listening on a local loop back
>
> resolved:
> inetinfo.exe:984 TCP server-name:http server-name:0 LISTENING
> inetinfo.exe:984 TCP server-name:https server-name:0 LISTENING
> not resolved:
> inetinfo.exe:984 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING
> inetinfo.exe:984 TCP 0.0.0.0:443 0.0.0.0:0 LISTENING
>
> OK so it looks like its listening on the local loop back but look at the
> languard info and that is more telling.
>
> Simply - how to I shut down port 443, I have not installed a cert and I
have
> removed that one that is in IE as well.
>
> Help much appreciated.
>
> TIA
>
> Bob
>
>

Relevant Pages

  • Re: Microsoft Direct Push / Active Sync - cant get it working
    ... Great to hear that you got it all working on port 80! ... Sorry I'm not too familiar with the way SSL certificates are created and installed, so I can't be much help from here on out. ... I decided to see if I could get an SSL cert in place, ...
    (microsoft.public.pocketpc)
  • Re: Enable SSL, OWA not work
    ... You should see that the TCP port is 80, and the SSL port is 443. ... Can you try removing the cert and generating a new request? ... or from a CA on the Internet? ...
    (microsoft.public.exchange.admin)
  • Re: SSL Host Headers IIS 6.0
    ... Also can I use a wild card cert if the two domain names are completely ... > You have two SSL sites with different certificates/identities. ... Each website has distinct IP:Port and distinct SSL Certificate ... > much like standard http on port 80 where it allows you to share the same ...
    (microsoft.public.inetserver.iis.security)
  • Re: SSL in Active Directory
    ... Each cert needs to match the DNS name of the DC, not just the domain, so ... All DCs would then have to have an SSL. ... Adding SSL support won't change the behavior of any existing LDAP clients ... Port 389 stays like it is now as well as the GC port. ...
    (microsoft.public.windows.server.active_directory)
  • Re: [PHP] Command line socket server and SSL
    ... I'm doing fine without SSL. ... Can't use port 443 or the web server for this, so it needs to be a command line app. ...
    (php.general)