Re: 2003 Web Server Security flaw

From: Robert Waite (bob2dev_at_tampabay.rr.com)
Date: 12/28/03 

Date: Sun, 28 Dec 2003 11:20:58 -0500

If a hacker can get past the firewall and into the Web Server,
 he MAY not require someone to be using the program exe.
[Norberg wrote a superb book on W2k security I read some years ago.]

Those EXEs use DLLs which the hacker might use.

The fact I can not simply delete the folders for those programs, because I
get
a "access denied... (unspecified) file in use" type message [I'm the
Administrator by the way]
shows some are those DLLs are loaded in memory, BY DEFAULT, and therefore a
risk.

Thanks anyway.

"Nobody" <nobody> wrote in message
news:O0JbRSVzDHA.2928@TK2MSFTNGP09.phx.gbl...
>
> "Robert Waite" <bob2dev@tampabay.rr.com> wrote in message
> news:e4t2wsUzDHA.1680@TK2MSFTNGP12.phx.gbl...
> > Media Player, Netmeeting and possibly Outlook Express have no business
> being
> > on a Locked-down windows 2003 Web Server used only to host web sites,
yet
> I
> > can not figure out how to un-install, or at least cripple, them.
> >
> > How do I do that?
> >
> > Thanks,
> > Robert
> >
>
> First, your subject line is very misleading as none of those programs are
> security problems for the web platform provided no one uses them for any
> purpose.
>
> Second, if you want to "cripple" those programs as you say then you can do
> one of two things:
>
> 1. Delete the corrosponding exe file for each program
>
> 2. Use group policies to deny running those executables. (
>
> *personally* I recommend number two.
>
>

Relevant Pages

  • Where to put Dlls
    ... I have a Windows Service that runs on the same machine as my Web Server. ... I am trying to figure out the best place to put the .exe. ... This isn't the case if I have dlls I want to access. ...
    (microsoft.public.dotnet.languages.vb)
  • Re: Asus V9250 magic graphics driver - cant see adaptor in Contro
    ... This is a painstaking procedure as there are a lot of dlls and ... exe files to open in depends. ... only created on successful install which hasn't happened. ... driver inf file. ...
    (microsoft.public.windowsxp.embedded)
  • Re: C# Exceptions
    ... I did a runtime analysis of the exe and some important DLLs as ... > signature is valid then the app can decrypt the response and process it. ... > the source code of a managed app. ... NOT FOR THE MAIN PROGRAM EXE FILE. ...
    (Pen-Test)
  • CWinApp Assertion failure/ Access violation in odbc32.dll
    ... What I’m seeing in the debugger: Before the .EXE reaches the main ... DLLs that are linked implicitly to our .EXE modules. ... In the GenUtil class an instance of FileUtil is created. ... The ASSERTION failure seems to occur when the FileUtil Constructor is called ...
    (microsoft.public.vc.mfc)
  • Re: seeking guidance to solve compatibility problems in automated buil
    ... The product consists of a single exe and a number of dlls. ... If I open the failed component project in VB6, and reselect the reference, ... I understand that this has something to do with binary compatibility but the ...
    (microsoft.public.vb.general.discussion)