Re: 2003 Web Server Security flaw

From: Robert Waite (bob2dev_at_tampabay.rr.com)
Date: 12/28/03 

Date: Sun, 28 Dec 2003 11:20:58 -0500

If a hacker can get past the firewall and into the Web Server,
 he MAY not require someone to be using the program exe.
[Norberg wrote a superb book on W2k security I read some years ago.]

Those EXEs use DLLs which the hacker might use.

The fact I can not simply delete the folders for those programs, because I
get
a "access denied... (unspecified) file in use" type message [I'm the
Administrator by the way]
shows some are those DLLs are loaded in memory, BY DEFAULT, and therefore a
risk.

Thanks anyway.

"Nobody" <nobody> wrote in message
news:O0JbRSVzDHA.2928@TK2MSFTNGP09.phx.gbl...
>
> "Robert Waite" <bob2dev@tampabay.rr.com> wrote in message
> news:e4t2wsUzDHA.1680@TK2MSFTNGP12.phx.gbl...
> > Media Player, Netmeeting and possibly Outlook Express have no business
> being
> > on a Locked-down windows 2003 Web Server used only to host web sites,
yet
> I
> > can not figure out how to un-install, or at least cripple, them.
> >
> > How do I do that?
> >
> > Thanks,
> > Robert
> >
>
> First, your subject line is very misleading as none of those programs are
> security problems for the web platform provided no one uses them for any
> purpose.
>
> Second, if you want to "cripple" those programs as you say then you can do
> one of two things:
>
> 1. Delete the corrosponding exe file for each program
>
> 2. Use group policies to deny running those executables. (
>
> *personally* I recommend number two.
>
>

Relevant Pages

  • Where to put Dlls
    ... I have a Windows Service that runs on the same machine as my Web Server. ... I am trying to figure out the best place to put the .exe. ... This isn't the case if I have dlls I want to access. ...
    (microsoft.public.dotnet.languages.vb)
  • Re: Asus V9250 magic graphics driver - cant see adaptor in Contro
    ... This is a painstaking procedure as there are a lot of dlls and ... exe files to open in depends. ... only created on successful install which hasn't happened. ... driver inf file. ...
    (microsoft.public.windowsxp.embedded)
  • Re: C# Exceptions
    ... I did a runtime analysis of the exe and some important DLLs as ... > signature is valid then the app can decrypt the response and process it. ... > the source code of a managed app. ... NOT FOR THE MAIN PROGRAM EXE FILE. ...
    (Pen-Test)
  • My.Settings Thoughts
    ... was a GLOBAL shared memory map that allowed the EXE and her .NET dlls to shared this "namespace" ... But for the settings, it uses the same file, but the sections are different. ... To provide access to the EXE, I had created Get/Set properties but I did that in the Form partial class. ... That way it can be used by the application DLLs. ...
    (microsoft.public.dotnet.languages.vb)
  • =?ISO-8859-1?Q?DLLs_zur_Laufzeit_austauschen_=2F_ausw=E4hlen?=
    ... einer Exe nach dem Kompilieren eine andere DLL als die ... public static class DingsBums { ... wenn ich alle DLLs gleichzeitig verwenden ... selbst wenn sie alle eine BindingList derselben Datenklasse ...
    (microsoft.public.de.german.entwickler.dotnet.csharp)